AWS amazonq documentation change
Summary
Added clarification about requiring 'Sites.FullControl.All' permission for SharePoint ACL ingestion
Security assessment
Documents required permissions for proper access control implementation but does not indicate remediation of a specific security issue.
Diff
diff --git a/amazonq/latest/qbusiness-ug/sharepoint-cloud-connector.md index 75a04d62a..a4ec801a5 100644 --- a/amazonq/latest/qbusiness-ug/sharepoint-cloud-connector.md +++ b/amazonq/latest/qbusiness-ug/sharepoint-cloud-connector.md @@ -72,0 +73,2 @@ For example, if **User principal name** is `[email protected]` in Azure porta + * Microsoft requires granting the "Sites.FullControl.All" permission to the application in order to ingest the source ACLs from SharePoint +