AWS::Wisdom::Assistant ServerSideEncryptionConfiguration - AWS CloudFormation

AWS::Wisdom::Assistant ServerSideEncryptionConfiguration

The configuration information for the customer managed key used for encryption.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON

{ "KmsKeyId" : String }

YAML

KmsKeyId: String

Properties

KmsKeyId

The customer managed key used for encryption. The customer managed key must have a policy that allows kms:CreateGrant and kms:DescribeKey permissions to the IAM identity using the key to invoke Wisdom. To use Wisdom with chat, the key policy must also allow kms:Decrypt, kms:GenerateDataKey*, and kms:DescribeKey permissions to the connect.amazonaws.com service principal. For more information about setting up a customer managed key for Wisdom, see Enable Amazon Connect Wisdom for your instance. For information about valid ID values, see Key identifiers (KeyId) in the AWS Key Management Service Developer Guide.

Required: No

Type: String

Minimum: 1

Maximum: 4096

Update requires: Replacement