Configuring an Amazon Q Business application using AWS IAM Identity Center

As the first step towards creating a generative artificial intelligence (AI) assistant, you configure an application environment, and grant end user access to users to interact with an application environment using AWS IAM Identity Center for user management. Then you provision subscriptions for your IAM Identity Center users and groups.

Your authorized users interact with your application environment through the web experience. You share the endpoint URL of your web experience with your users, who open the URL and are authenticated before they can start chatting. The endpoint URL can be found in your web experience settings when selecting your application environment in the console.

This section guides you through the process of creating and configuring an Amazon Q Business application environment. To create an application environment, you can use the Amazon Q Business console, the AWS Command Line Interface (AWS CLI), and Amazon Q Business API operations.

As a prerequisite, make sure that you complete the setting up tasks and go through the connecting an IAM Identity Center instance section. If you're using the AWS CLI or the API, make sure that you've created the required IAM roles.

After you finish creating your application environment, you can customize and preview the web experience that it will power.