AWS audit-manager documentation change
Summary
Removed explanation of resource-based policies for audit owners and delegates
Security assessment
Removes documentation about security mechanisms but doesn't address a specific vulnerability
Diff
diff --git a/audit-manager/latest/userguide/security_iam_service-with-iam.md b/audit-manager/latest/userguide/security_iam_service-with-iam.md index 908f38fce..c79719327 100644 --- a/audit-manager/latest/userguide/security_iam_service-with-iam.md +++ b/audit-manager/latest/userguide/security_iam_service-with-iam.md @@ -68,9 +67,0 @@ To enable cross-account access, you can specify an entire account or IAM entitie -Although AWS Audit Manager does not allow you to manage resource-based policies through IAM, the service internally implements and manages resource-based policies for the following two scenarios: - - * When audit owners are assigned to an assessment, a resource-based policy is attached to the assessment with the principal as the audit owner. For more information, see [Step 3: Specify audit owners ](./create-assessments.html#choose-audit-owners) and [Step 3: Edit audit owners](./edit-assessment.html#edit-choose-audit-owners). - - * When a control set of an assessment is delegated, a resource-based policy is attached to the control set with the principal as the delegate. For more information, see [Delegating a control set for review in AWS Audit Manager](./delegation-for-audit-owners-delegating-a-control-set.html). - - - -