AWS Security ChangesHomeSearch

AWS audit-manager documentation change

Service: audit-manager · 2025-03-19 · Documentation low

File: audit-manager/latest/userguide/edit-assessment.md

Summary

Removed 'Audit owner permissions' section containing IAM policy details

Security assessment

Removes existing security documentation without indication of vulnerability remediation

Diff

diff --git a/audit-manager/latest/userguide/edit-assessment.md b/audit-manager/latest/userguide/edit-assessment.md
index 08e3077d2..00e4ad69e 100644
--- a/audit-manager/latest/userguide/edit-assessment.md
+++ b/audit-manager/latest/userguide/edit-assessment.md
@@ -29,2 +28,0 @@ Make sure your IAM identity has appropriate permissions to edit an assessment in
-    * [Audit owner permissions](./edit-assessment.html#edit-choose-audit-owners-permissions)
-
@@ -89,48 +86,0 @@ In this step, you can change which audit owners are included in your assessment.
-#### Audit owner permissions
-
-The below policy is attached for all the audit owners of an assessment.
-
-Audit Manager replaces the `placeholder text` with your account and resource identifiers before attaching the policy.
-    
-    
-    {
-        "Version": "2012-10-17",
-        "Statement": [
-            {
-                "Sid": "AuditOwner",
-                "Effect": "Allow",
-                "Principal": {
-                    "AWS": "Principal for user/role who are the audit owners of the Assessment"
-                },
-                "Action": [
-                    "auditmanager:GetAssessment",
-                    "auditmanager:UpdateAssessment",
-                    "auditmanager:UpdateAssessmentControlSetStatus",
-                    "auditmanager:UpdateAssessmentStatus",
-                    "auditmanager:UpdateAssessmentControl",
-                    "auditmanager:DeleteAssessment",
-                    "auditmanager:GetChangeLogs",
-                    "auditmanager:GetEvidenceFoldersByAssessment",
-                    "auditmanager:GetEvidenceFoldersByAssessmentControl",
-                    "auditmanager:BatchImportEvidenceToAssessmentControl",
-                    "auditmanager:GetEvidenceFolder",
-                    "auditmanager:GetEvidence",
-                    "auditmanager:GetEvidenceByEvidenceFolder",
-                    "auditmanager:BatchCreateDelegationByAssessment",
-                    "auditmanager:BatchDeleteDelegationByAssessment",
-                    "auditmanager:AssociateAssessmentReportEvidenceFolder",
-                    "auditmanager:BatchAssociateAssessmentReportEvidence",
-                    "auditmanager:BatchDisassociateAssessmentReportEvidence",
-                    "auditmanager:CreateAssessmentReport",
-                    "auditmanager:DeleteAssessmentReport",
-                    "auditmanager:DisassociateAssessmentReportEvidenceFolder",
-                    "auditmanager:GetAssessmentReportUrl"
-                ],
-                "Resource": [
-                    "arn:aws:auditmanager:region:account_ID:assessment/assessment_ID",
-                    "arn:aws:auditmanager:region:account_ID:assessment/assessment_ID/*"
-                ]
-            }
-        ]
-    }
-