AWS Security ChangesHomeSearch

AWS audit-manager documentation change

Service: audit-manager · 2025-03-19 · Documentation low

File: audit-manager/latest/userguide/security_iam_service-with-iam.md

Summary

Removed explanation of resource-based policies for audit owners and delegates

Security assessment

Removes documentation about security mechanisms but doesn't address a specific vulnerability

Diff

diff --git a/audit-manager/latest/userguide/security_iam_service-with-iam.md b/audit-manager/latest/userguide/security_iam_service-with-iam.md
index 908f38fce..c79719327 100644
--- a/audit-manager/latest/userguide/security_iam_service-with-iam.md
+++ b/audit-manager/latest/userguide/security_iam_service-with-iam.md
@@ -68,9 +67,0 @@ To enable cross-account access, you can specify an entire account or IAM entitie
-Although AWS Audit Manager does not allow you to manage resource-based policies through IAM, the service internally implements and manages resource-based policies for the following two scenarios:
-
-  * When audit owners are assigned to an assessment, a resource-based policy is attached to the assessment with the principal as the audit owner. For more information, see [Step 3: Specify audit owners ](./create-assessments.html#choose-audit-owners) and [Step 3: Edit audit owners](./edit-assessment.html#edit-choose-audit-owners).
-
-  * When a control set of an assessment is delegated, a resource-based policy is attached to the control set with the principal as the delegate. For more information, see [Delegating a control set for review in AWS Audit Manager](./delegation-for-audit-owners-delegating-a-control-set.html).
-
-
-
-