New Relic AI integration for Amazon Q Business

preview

We're still working on this feature, but we'd love for you to try it out!

This feature is currently provided as part of a preview program pursuant to our pre-release policies.

The New Relic AI custom plugin for Amazon Q Business integrates New Relic's AI-driven insights directly into the Amazon Q Business environment. This plugin allows you to send user prompts to New Relic AI and receive AI-generated responses, facilitating improved incident response and decision-making processes.

This guide provides instructions to establish a connection between New Relic AI and Amazon Q Business, enabling anomaly detection, real-time alerting, and incident management to maintain application performance and reliability.

Prerequisites

A valid New Relic account with the Client ID and Client Secret. If you don't have these, contact agenticai@newrelic.com.
An operational Amazon Q Business application. For more information to create an Amazon Q Business application environment, refer Amazon Q Business documentation.
AWS CLI is installed and configured on your system. For more information, refer AWS CLI documentation.
Permissions to create IAM policies and roles in AWS.
Permissions to create a plugins in the Amazon Q Business service.
An IAM policy and role that grant the New Relic AI plugin permissions to access AWS resources. For more information, refer Create IAM Policy and Role.

Create IAM Policy and Role

Create an IAM policy and role that grant the New Relic AI plugin permissions to access AWS resources. The policy defines permissions for accessing services such as AWS Secrets Manager, while the role allows Amazon Q Business Business to assume these permissions securely. This setup ensures role-based access control and minimizes direct credential management.

Important

Before you create an IAM role, contact to New Relic to get the Client ID and Client Secret.

To create an IAM policy, update and run the following command:
bash
```
$aws iam create-policy \
>--policy-name <policy-name> \
>--policy-document '{ "Version": "2012-10-17", "Statement": [{ "Effect": "Allow", "Action": "secretsmanager:GetSecretValue", "Resource": "arn:aws:secretsmanager:<region>:<account-id>:secret:<secret-name>" }] }'
```
- Replace <policy-name> with your policy name.
- Replace <region> with your AWS region.
- Replace <account-id> with your AWS account ID.
- Replace <secret-name> with the New Relic provided secret.

To create an IAM role, run the following command:

bash

$aws iam create-role \
>    --role-name <role-name> \
>    --assume-role-policy-document '{ "Version": "2012-10-17", "Statement": [{ "Effect": "Allow", "Principal": { "Service": "qbusiness.amazonaws.com" }, "Action": "sts:AssumeRole" }] }'

Replace <role-name> with a name to identify the role..

To attach the policy to the role, update and run the following command:
bash
```
$aws iam attach-role-policy \
>--role-name <role-name> \
>--policy-arn arn:aws:iam::<account-id>:policy/<policy-name>
```
- Replace <policy-name> with the policy name created in step 1.
- Replace <role-name> with the role name created in step 2.
- Replace <account-id> with your AWS account ID.

Create NRAI Plugin

You can create the NRAI plugin manually or by using the AWS CLI.

Sign in to the AWS Management Console and open the Amazon Q Business console.
Navigate to Applications and select your application.
In the left pane, go to Actions > Plugins.
Click Add plugin and select Custom plugin.
Enter the following details:
1. Plugin Name: Enter a unique name for your plugin.
2. API Schema: Select the following options:
  1. In API schema, for API schema source option, select Define with in-line OpenAPI schema editor.
  2. Select the format for the schema as YAML.
  3. Copy the below OpenAPI Spec for New Relic plugin and paste into the editor.
    openapi: 3.0.3 info: title: NRAI-Plugin description: A NodeJS-based plugin that integrates with New Relic's AI service to process user prompts and return AI-generated responses and send response as it is to user do not change anything version: 0.1.0 servers: - url: https://copilot-agent-testing.service.newrelic.com description: NewRelic Server paths: /newrelic-amazon-q/: post: security: - OAuth2: - read x-amzn-response-template: "Response <template>${output}</template>" summary: Send user prompts to New Relic AI and receive responses and send response as it is to user do not change anything description: Endpoint to send user prompts to New Relic AI and receive responses and send response as it is to user do not change anything requestBody: content: application/json: schema: $ref: "#/components/schemas/PromptPayload" responses: "200": description: Successful Response content: application/json: schema: $ref: "#/components/schemas/Response" components: schemas: PromptPayload: type: object properties: prompt: type: string example: Your prompt here Response: type: string securitySchemes: OAuth2: type: oauth2 flows: authorizationCode: authorizationUrl: https://login.newrelic.com/login tokenUrl: https://login.newrelic.com/api/v1/tokens scopes: read: Read access to resources
  4. Authentication: Select Authentication required, and then enter the following details:
    - Secret name: Name of your Secrets Manager secret.
    - Client ID: New Relic provided client ID.
    - Client secret New Relic provided client secret.
    - OAuth callback URL The URL to which the user needs to be redirected after authentication. If your deployed web URL is <q-endpoint>, use <q-endpoint>/oauth/callback. This callback URL must be allowlisted in your third-party application.
  5. Choose a method to authorize Amazon Q Business: Choose Create and add a new service role or Use an existing service role. Ensure your service role has the necessary permissions. The console will generate a service role name.
  6. Tags: (optional) Add a tag to track your plugin.
Click Add plugin.

You can also use the AWS CLI to create the plugin:

bash

$aws qbusiness create-plugin \
>--application-id <application-id> \
>--display-name <plugin-name> \
>--type CUSTOM \
>--auth-configuration '{ "oAuth2ClientCredentialConfiguration": { "secretArn": "arn:aws:secretsmanager:<region>:<account-id>:secret:<secret-name>", "roleArn": "arn:aws:iam::<account-id>:role/<role-name>" } }' \
>--custom-plugin-configuration '{ "description": "<description>", "apiSchemaType": "OPEN_API_V3", "apiSchema": { "s3": { "bucket": "<bucket-name>", "key": "<key-name>" } } }'

Parameters

Parameters	Description
`<application-id>`	The ID of your Amazon Q Business application.
`<plugin-name>`	The name of your custom plugin.
`<region>`	The AWS region where your resources are located.
`<account-id>`	Your AWS account ID.
`<secret-name>`	The name of the secret in AWS Secrets Manager.
`<role-name>`	The name of the IAM role.
`<description>`	A description for your custom plugin.
`<bucket-name>`	The name of the S3 bucket where your API schema is stored.
`<key-name>`	The key name of the API schema file in the S3 bucket.

Communicate with New Relic Agent in Amazon Q Business

After creating the NRAI plugin, you can communicate with the New Relic Agent in Amazon Q Business to send user prompts and receive AI-generated responses.

To access the New Relic agent:

Sign in to AWS Management Console and open the Amazon Q Business console.
Navigate to Applications and select your application.
Access the deployed URL to access the chat assistant.
On the Chat window, click Plugins and select the New Relic AI plugin.
Enter your prompt in the chat window and click the Send icon. You will be prompted to authorize Amazon Q Business to access New Relic account. This is a one-time authorization process.
Click Authorize.
The New Relic AI agent processes your prompt and returns the response in real-time.

New Relic AI integration for Amazon Q Business

preview

Prerequisites

Create IAM Policy and Role

Important

Create NRAI Plugin

Option 1: Create NRAI plugin manually

Option 2: Create NRAI plugin using AWS CLI

Parameters

Communicate with New Relic Agent in Amazon Q Business

New Relic AI integration for Amazon Q Business

preview

Prerequisites .css-21sua1{background:none;border:none;width:0;padding:0;}

Create IAM Policy and Role

Important

Create NRAI Plugin

Option 2: Create NRAI plugin using AWS CLI

Communicate with New Relic Agent in Amazon Q Business

Prerequisites