Using roles with live transcription
The information in the following sections explains how to create and manage a service-linked role for the Amazon Chime SDK live transcription. For more information about the live transcription service, see Using Amazon Chime SDK live transcription.
Topics
- Service-Linked Role Permissions for Amazon Chime SDK Live Transcription
- Creating a Service-Linked Role for Amazon Chime SDK Live Transcription
- Editing a Service-Linked Role for Amazon Chime SDK Live Transcription
- Deleting a Service-Linked Role for Amazon Chime SDK Live Transcription
- Supported Regions for Amazon Chime Service-Linked Roles
Service-Linked Role Permissions for Amazon Chime SDK Live Transcription
Amazon Chime SDK Live Transcription uses a service-linked role named AWSServiceRoleForAmazonChimeTranscription – Allows the Amazon Chime SDK to access Amazon Transcribe and Amazon Transcribe Medical on your behalf.
The AWSServiceRoleForAmazonChimeTranscription service-linked role trusts the following services to assume the role:
-
transcription.chime.amazonaws.com
The role permissions policy allows the Amazon Chime SDK to complete the following actions on the specified resources:
-
Action:
transcribe:StartStreamTranscriptiononall AWS resources -
Action:
transcribe:StartMedicalStreamTranscriptiononall AWS resources
You must configure permissions to allow an IAM entity (such as a user, group, or role) to create, edit, or delete a service-linked role. For more information, see Service-Linked Role Permissions in the IAM User Guide.
Creating a Service-Linked Role for Amazon Chime SDK Live Transcription
You use the IAM console to create a service-linked role with the Chime Transcription use case.
Note
You must have IAM administrative permissions to complete these steps. If you don't, contact a system administrator.
To create the role
-
Open the IAM console at https://console.aws.amazon.com/iam/
. -
In the navigation pane of the IAM console, choose Roles, then choose Create role.
-
Choose the AWS Service role type, then choose Chime Transcription.
The IAM policy appears.
-
Select the checkbox next to the policy, then choose Next: Tags.
-
Choose Next: Review.
-
Edit the description as needed, then choose Create role.
You can also use the AWS CLI or the AWS API to create a service-linked role named transcription.chime.amazonaws.com.
In the CLI, run this command: aws iam create-service-linked-role --aws-service-name
transcription.chime.amazonaws.com.
For more information, see Creating a Service-Linked Role in the IAM User Guide. If you delete this service-linked role, you can use this same process to create the role again.
Editing a Service-Linked Role for Amazon Chime SDK Live Transcription
The Amazon Chime SDK does not allow you to edit the AWSServiceRoleForAmazonChimeTranscription service-linked role. After you create a service-linked role, you cannot change the name of the role because various entities might reference the role. However, you can use IAM to edit the role's description. For more information, see Editing a Service-Linked Role in the IAM User Guide.
Deleting a Service-Linked Role for Amazon Chime SDK Live Transcription
If you no longer need to use a feature or service that requires a service-linked role, we recommend that you delete that role. That way you don’t have an unused entity that is not actively monitored or maintained.
To manually delete the service-linked role using IAM
Use the IAM console, the AWS CLI, or the AWS API to delete the AWSServiceRoleForAmazonChimeTranscription service-linked role. For more information, see Deleting a Service-Linked Role in the IAM User Guide.
Supported Regions for Amazon Chime Service-Linked Roles
The Amazon Chime SDK supports using service-linked roles in all of the regions where the service is available. For more information, see Amazon Chime endpoints and quotas, and Using Amazon Chime SDK media Regions.
