What’s the best way to configure the IAM role policy for a Genesys Cloud Data Action to invoke an AWS Lambda function?
I have the Lambda ARN and endpoint, but the Data Action consistently returns a 403 Forbidden. My policy allows lambda:InvokeFunction on the specific ARN, yet the logs show AccessDenied. Is there a specific trust relationship or policy statement required for the Genesys Cloud service principal to assume the role?