Amazon Kendra Configuration

Amazon Kendra Preparation

Creating an Index

Navigate to Services → Amazon Kendra → Indexes → Create index

Specify your IAM role

When creating a new index, it is recommended to create a new role for each index. You can use the option to let the role automatically created during index creation to make sure that all permissions are assigned to the new role. If you prefer to specify an existing IAM role, make sure your role has the permission to access the CloudWatch assigned:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": "cloudwatch:PutMetricData",
            "Resource": "*",
            "Condition": {
                "StringEquals": {
                    "cloudwatch:namespace": "Kendra"
                }
            }
        },
        {
            "Effect": "Allow",
            "Action": "logs:DescribeLogGroups",
            "Resource": "*"
        },
        {
            "Effect": "Allow",
            "Action": "logs:CreateLogGroup",
            "Resource": "arn:aws:logs:region:account ID:log-group:/aws/kendra/*"
        },
        {
            "Effect": "Allow",
            "Action": [
                "logs:DescribeLogStreams",
                "logs:CreateLogStream",
                "logs:PutLogEvents"
            ],
            "Resource": "arn:aws:logs:region:account ID:log-group:/aws/kendra/*:log-stream:*"
        }
    ]
}

Use the recommended option "Create a new role" to avoid an error and conflicts.

Access Control Settings → Based on your need, select either Yes or No for Use tokens for access control? option.

Raytion Enterprise Connectors are synchronizing third-party content information together with its access control and principal information. The user and group memberships are fully synchronized by the connector with Kendra. In order to deploy Kendra with Secure Search, apply the user attribute filter for the current user and the search result will be automatically restricted to the documents ACL.

Chose the edition according to your use case.

Create a Data Source

Once the index is created. Add a custom data source connector to your index. The ID of the registered Data Source will be configured in the connector. All documents and groups synchrnonized by the connector will be linked to the specified data source.

Extend Facet Definition (Optional)

Out of the box, our connector is processing the documents according to the default facet definition. You can extend the facet definition to include source system specific metadata. Once added into the facet definition, the connector will automatically process all documents according to the extended facet definition.