Create users or groups in IAM Identity Center. Note: New users receive an email invitation to join IAM Identity Center.
Create a permission set that allows users to chat with Amazon Q Developer, and then assign the permission set to your users and groups. To view an example policy, see Allow users to chat with Amazon Q. Note: To use Amazon Q Developer chat, you must include the q:StartConversation, q:SendMessage, q:GetConversation, and q:ListConversations permissions in the policy. If you don't explicitly allow the permissions, then you receive a permissions error when you try to use Amazon Q Developer chat.
Use one of the following methods to confirm that the users are successfully subscribed:
Open the Amazon Q console.
Choose Subscriptions, and then choose Users.
Find the users under Subscribed groups and users.
-or-
Open the IAM Identity Center console.
Choose Applications, and then choose the QDefaultProfile application.
Find the users on the Application details page under Assigned users and groups.
Log in as a user in IAM Identity Center and use Amazon Q Developer chat on the console to confirm that users can use it. Note: If you receive an authentication error, then choose Retry. Enter the credentials of the subscribed user. After you enter the credentials, you receive an "authentication successful" message.