AWS sagemaker-unified-studio documentation change
Summary
Added documentation for three new Bedrock-related IAM policies
Security assessment
Documents new IAM policies which are security features, but does not address specific security vulnerabilities.
Diff
diff --git a/sagemaker-unified-studio/latest/adminguide/doc-history.md index 14e92c8be..1e3425eb7 100644 --- a/sagemaker-unified-studio/latest/adminguide/doc-history.md +++ b/sagemaker-unified-studio/latest/adminguide/doc-history.md @@ -12,0 +13,3 @@ Change| Description| Date +New policy - SageMakerStudioBedrockKnowledgeBaseServiceRolePolicy| This policy allows Amazon Bedrock Knowledge Bases to access Amazon Bedrock models and data sources in Amazon SageMaker Unified Studio. For more information, see [Amazon SageMaker Unified Studio updates to AWS managed policies](https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam-awsmanpol.html).| February 25, 2025 +New policy - SageMakerStudioBedrockKnowledgeBaseCustomResourcePolicy| This policy provides access to configure vector stores and Amazon Bedrock knowledge bases in Amazon SageMaker Unified Studio. For more information, see [Amazon SageMaker Unified Studio updates to AWS managed policies](https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam-awsmanpol.html).| February 25, 2025 +New policy - SageMakerStudioBedrockFunctionExecutionRolePolicy| This policy allows AWS Lambda to access an Amazon Bedrock function component's configuration in Amazon SageMaker Unified Studio. For more information, see [Amazon SageMaker Unified Studio updates to AWS managed policies](https://docs.aws.amazon.com/sagemaker-unified-studio/latest/adminguide/security-iam-awsmanpol.html).| February 25, 2025