AWS Security ChangesHomeSearch

AWS organizations medium security documentation change

Service: organizations · 2025-03-26 · Security-related medium

File: organizations/latest/userguide/orgs_manage_policies_backup_syntax.md

Summary

Added Important note warning about risks of using @@assign operator in backup policies at the same hierarchy level.

Security assessment

Explicitly warns about potential misconfiguration risks that could lead to unintended policy settings, which relates to security posture and data protection.

Diff

diff --git a/organizations/latest/userguide/orgs_manage_policies_backup_syntax.md b/organizations/latest/userguide/orgs_manage_policies_backup_syntax.md
index 674b7ad6f..9c9ede05d 100644
--- a/organizations/latest/userguide/orgs_manage_policies_backup_syntax.md
+++ b/organizations/latest/userguide/orgs_manage_policies_backup_syntax.md
@@ -22,0 +23,4 @@ To be complete and functional, an [effective backup policy](./orgs_manage_polici
+###### Important
+
+Using the `@@assign` operator at the same level or in the organization hierarchy may introduce risk of the backup policy not creating expected backup plans. The `@@assign` operator overwrites any existing policy settings with the new values specified in the final effective policy.
+