Managing user roles - AWS Chatbot
PrerequisitesChannel members: Adding a user role from a chat channelChannel members: Switching user roles from a chat channelChannel members: Unmapping a user roleAdministrator: Unmapping a user roleAdministrator: Enabling a user role requirement

Managing user roles

All users can manage user roles:

  • Channel members can switch their user roles from their chat channels. Additionally, channel members can unmap user roles from chat client IDs using the AWS Chatbot console.

  • Administrators can unmap user roles from channel members' chat client IDs from the User permissions page in the AWS Chatbot console. Administrators can also require user roles by enabling a user role requirement in the User permissions page. This requirement can be applied to all workspaces and channels or to individual channel configurations. For more information on user role requirements, see User role requirement.

Note

Administrators can't map user roles. Only channel members have this ability.

Prerequisites

To manage user roles, you need a chat channel configured for AWS Chatbot. For more information, see Getting started with AWS Chatbot

Channel members: Adding a user role from a chat channel

If you are a new channel member or your channel permission approach changes, AWS Chatbot will prompt you to add a user role.

To add a user role from a chat channel

  1. Choose Let's get started.

  2. Choose an account to add a role.

    Note

    This link will take you directly to the AWS Chatbot console.

  3. In User role, choose a role.

  4. Choose Save.

    Note

    Choosing Save takes you to an authorization page to fetch your chat client identity. This identity is mapped to your chosen role.

  5. Choose Allow.

Channel members: Switching user roles from a chat channel

If you find that your current user role doesn’t have the right permissions to achieve your desired task, you can switch roles directly from Microsoft Teams and Slack.

Note

If you are unable to run a particular command after switching roles, contact your administrator regarding the channel guardrails in place.

To switch a user role from a chat channel

  1. In your chat channel, enter @aws switch-role.

  2. Choose the account that you want to switch roles for.

    Note

    This link will take you directly to the AWS Chatbot console.

  3. In the AWS Chatbot console, choose Choose user role.

  4. In User role, choose a user role.

  5. Choose Save.

    Note

    Choosing Save, takes you to an authorization page. This is so your chat client identity can be retrieved and associated with your chosen role.

  6. On the authorization page, choose Allow.

Channel members: Unmapping a user role

If you have a user role applied that you no longer need, you can unmap it.

To unmap a user role

  1. Open the AWS Chatbot console.

  2. Choose a configured client.

  3. In User role, choose Clear role.

Administrator: Unmapping a user role

You can unmap a user role from a chat client ID. When you unmap a user role, it will no longer appear your Mapped roles table.

To unmap a user role

  1. Open the AWS Chatbot console.

  2. Under Account settings, choose User permissions.

  3. In Mapped roles, select the roles you want to unmap.

  4. Choose Unmap.

Administrator: Enabling a user role requirement

You can enable a user role requirement to force users to apply a user role before running commands in Microsoft Teams and Slack.

To enable a user role requirement

  1. Open the AWS Chatbot console.

  2. Under Account settings, choose User permissions.

  3. In User role requirement, enable a user role requirement.