Trying to call an AWS Lambda function from a NICE CXone Architect Data Action. Getting a 403 Access Denied error even though the IAM role has lambda:InvokeFunction permission. The endpoint is set to https://lambda.us-east-1.amazonaws.com/2015-03-31/function/arn:aws:lambda:us-east-1:123456789:function:my-function. Payload is just `{}.
Is there a specific trust policy or signature version I’m missing in the Data Action configuration?