AWS Security ChangesHomeSearch

AWS amazonq documentation change

Service: amazonq · 2025-03-10 · Documentation low

File: amazonq/latest/qbusiness-ug/sharepoint-cloud-connector.md

Summary

Added clarification about requiring 'Sites.FullControl.All' permission for SharePoint ACL ingestion

Security assessment

Documents required permissions for proper access control implementation but does not indicate remediation of a specific security issue.

Diff

diff --git a/amazonq/latest/qbusiness-ug/sharepoint-cloud-connector.md
index 75a04d62a..a4ec801a5 100644
--- a/amazonq/latest/qbusiness-ug/sharepoint-cloud-connector.md
+++ b/amazonq/latest/qbusiness-ug/sharepoint-cloud-connector.md
@@ -72,0 +73,2 @@ For example, if **User principal name** is `[email protected]` in Azure porta
+  * Microsoft requires granting the "Sites.FullControl.All" permission to the application in order to ingest the source ACLs from SharePoint 
+