Setting Up AWS Chime Account for Video Calling

Updated 

9 days ago

You can integrate Live Chat with AWS Chime to enable video chat functionality. This involves setting up an AWS Chime account with the necessary permissions and linking it to Sprinklr. To support video recording and transcription, you can additionally configure service-linked roles in AWS and set up an S3 bucket for storage.

Prerequisites

Before you begin, ensure the following prerequisites are met:

Active AWS Account with Chime SDK

  • Ensure you have an active AWS account.

  • The Amazon Chime SDK must be enabled and correctly configured.

  • The AWS Region used for the Amazon Chime SDK should support both meeting control and meeting media. For more information, see Available AWS Regions for the Amazon Chime SDK.

Raise Support Tickets for IAM Role

Reach out to Sprinklr Support at tickets@sprinklr.com to activate the Video Call IAM role and enable Video Calling dynamic properties.

Cloud Provider Identity and Authentication Details

The cloud provider identity and authentication details that you need in Step 1 are listed in the section below.

Note: If the details are not listed for your cloud provider, reach out to Sprinklr Support at tickets@sprinklr.com.

In Step 1: Create a Role in Your AWS Account, you will need the AWS Account ID corresponding to your Sprinklr environment.

Refer to the table below for the specific values corresponding to your environment:

Environment

Identifier Type

Identifier Value

Prod

Account ID

869367471674

Prod4

Account ID

170450182475

Prod15

Account ID

653661179041

Reach out to Sprinklr Support at tickets@sprinklr.com for the following details:

  • Sprinklr GCP account’s Account ID (to be used with accounts.google.com.aud)

  • OIDC Token (to be used with accounts.google.com.oaud)

In Step 1: Create a Role in Your AWS Account, you will need the following Azure details:

  • The Tenant ID of the Sprinklr Azure account

  • The Client ID and Object ID of the Managed Identity assigned to the Sprinklr node

Refer to the table below for the specific values corresponding to your environment:

Environment

Identifier Type

Identifier Value

Prod2

Tenant ID

bc14634e-db9f-4229-8cf0-68a87acd2f98

Client ID

79825178-b33f-4f16-af3b-179607e67f67

Object ID

0938112f-988e-44bd-998d-b4302a975bad

Prod3

Tenant ID

bc14634e-db9f-4229-8cf0-68a87acd2f98

Client ID

28b2faf9-124d-4a58-a5d8-e60b3a96c666

Object ID

c5636ba1-f21f-4de1-997d-e840eb0b2f84

Set Up AWS Chime Account

In this section, you will create a role in your AWS account with the required permissions. Once the role is set up, you can add an AWS Chime account in Sprinklr.

Step 1: Create a Role in Your AWS Account 

Depending on your Sprinklr-hosting environment, see the relevant section:

To create a role, follow these steps:

1. Open the IAM Console.

3. Click Roles, and then click Create role.

4. Under Trusted entity type, select AWS account.

5. In An AWS account section, choose Another AWS account. Enter the AWS Account ID mentioned in the Prerequisites section.

6. In the Permissions page, assign the following permissions for Amazon Chime and S3 services to this role.

  • AmazonChimeFullAccess

  • AmazonS3FullAccess

7. Complete the role creation process and copy the Amazon Resource Name (ARN) of the newly created role. You will need this ARN in step 2.

Note: Raise a support ticket at tickets@sprinklr.com to whitelist your IAM Role ARN so that Sprinklr’s AWS node can assume your IAM role.

To create a new role in the AWS IAM Console, follow these steps:

1. Open IAM Console.

2. Click Roles, and then click Create role.

3. Under Trusted entity type, select Web Identity.

4. Use the Sprinklr Account ID as the trusted identity.

5. In the Permissions page, assign the following permissions for Amazon Chime and S3 services to this role.

  • AmazonChimeFullAccess

  • AmazonS3FullAccess

To create a role, follow these steps:

1. Open AWS IAM Console.

2. In Identity providers, create a new OIDC Identity Provider with the following details mentioned in the Prerequisites section:

  • Set the Provider URL as: https://sts.windows.net/{tenant_id}/

  • Add the Client ID as the Audience value

This configuration establishes trust between your Azure environment and AWS using OpenID Connect (OIDC).

3. In IAM Console, go to Roles > Create role.

4. Under Trusted entity type, select Web Identity.

5. Set Sprinklr as the trusted identity provider.

6. In the Permissions page, assign the following permissions for Amazon Chime and S3 services to this role.

  • AmazonChimeFullAccess

  • AmazonS3FullAccess

Configure Trusted Entities accordingly to allow the Sprinklr identity to assume the role. Use the code below:

{
    "Version": "Statement": [{
            "2012-10-17",
            "Sid": "prod3",
            "Effect": "Allow",
            "Principal": {
                "Federated": "<ARN of Identity Provider added in previous step>"
                "Action": "sts:AssumeRoleWithWebIdentity",
                "Condition": {
                    "StringEquals": {
                        "sts.windows.net/<TENANT_ID>/:sub": "<0BJECT_ID>",
                        "sts.windows.net/<TENANT_ID>/:aud": "<CLIENT_ID>"
                    }
                }
            }
        ]
    }

Step 2: Create AWS Chime Account in Sprinklr

1. Log in to Sprinklr.

2. Navigate to the Sprinklr's Accounts page:

Click the New Page (+) icon. Under Platform Modules, select All Settings. Search for Accounts and select it to open the Accounts page.

Alternatively, you can go directly to the Accounts page using this link: https://space.sprinklr.com/social/governance/accounts.

4. On the Accounts page, click Add Account.

5. In the search bar, type AWS Chime, then select it from the search results.

6. On the Add AWS Chime Account screen, enter the following key AWS Chime account details.

Field

Description

Name

Enter a name for the AWS Chime account.

AWS Account Region

Specify the AWS Account Region.

AWS Role ARN

Enter the ARN you copied in Step 1.

Note: You can skip the Call Recording fields for now. These can be configured after the AWS Chime account has been added in Sprinklr.

Add Support for Video Chat Recording and Transcription

You can record and transcribe video calls using AWS Chime in Live Chat. To enable this functionality, follow these steps:

  1. Create AWS service-linked roles.

  2. Create an S3 bucket to store recordings and transcripts.

  3. Add the service-linked role and S3 bucket details to the AWS Chime account in Sprinklr.

Create Service-Linked Roles for Recording and Transcription

Note: For detailed steps, refer to Amazon Chime SDK Documentation.

Follow these steps:

1. Log in to your AWS account.

2. Go to IAM Console.

3. Click Role > Create role.

For recording, in Trusted entity type, select AWS service. In Use case section, select Chime - SDK Media Pipelines.

For transcription, in Use case section, select Chime - Live Transcription.

Create an S3 Bucket with Policy for Recording and Transcription

This step is to create an Amazon S3 buckect and configure it to store Chime recordings and transcripts.

Follow these steps:

1. Log in to your AWS account.

2. Navigate to the Amazon S3 service.

3. In the left-hand menu, click Buckets.

4. Click the Create bucket button.

5. For Bucket type, select General purpose. Enter the bucket name.

6. Edit the bucket. In the Permissions page, add bucket policy to allow Media Capture Pipelines to put objects.

Bucket policy:

{     "Version": "2012-10-17",     "Id": "AWSChimeMediaCaptureBucketPolicy",     "Statement": [         {             "Sid": "AWSChimeMediaCaptureBucketPolicy",             "Effect": "Allow",             "Principal": {                 "Service": "chime.amazonaws.com"             },             "Action": [                 "s3:PutObject",                 "s3:PutObjectAcl"             ],             "Resource": "arn:aws:s3:::[bucket_name]/*"         }     ] }

Add the Bucket Name and AWS Account ID to the Chime account in Sprinklr

Follow these steps:

1. Log in to Sprinklr.

2. Navigate to the Sprinklr Accounts page.

Click the New Page (+) icon. Under Platform Modules, select All Settings. Search for Accounts and select it to open the Accounts page.

Alternatively, you can go directly to the Accounts page using this link: https://space.sprinklr.com/social/governance/accounts.

4. On the Accounts page, find the AWS Chime account you added.

5. Click the three-dot icon alongside the AWS Chime account. On the options menu, click Edit.

6. Add the AWS S3 Bucket name and AWS Chime Account ID.

The video chat recordings will be saved in the AWS S3 bucket.

Was this article helpful?

Related Articles

Loading...