AWS Security ChangesHomeSearch

AWS amazonq documentation change

Service: amazonq · 2025-03-30 · Documentation medium

File: amazonq/latest/qbusiness-ug/servicenow-prereqs.md

Summary

Added role requirements for accessing ServiceNow documents (Knowledge articles, Service Catalog, Incidents)

Security assessment

Documents access control requirements for different ServiceNow resources, which is a security feature. However, there is no evidence of addressing a specific security vulnerability.

Diff

diff --git a/amazonq/latest/qbusiness-ug/servicenow-prereqs.md b/amazonq/latest/qbusiness-ug/servicenow-prereqs.md
index ed81c9ed8..6b3c5ce8f 100644
--- a/amazonq/latest/qbusiness-ug/servicenow-prereqs.md
+++ b/amazonq/latest/qbusiness-ug/servicenow-prereqs.md
@@ -17,0 +18,8 @@ Before you begin, make sure that you have completed the following prerequisites.
+
+  * Depending on what you are searching for, you will need specific roles. Note that if you are searching through public articles, you don't require any specific role. Apply the following roles depending on your use case: 
+
+    * When searching Knowledge article documents in Amazon Q, the user should have any of the following roles - Knowledge, Knowledge_Admin, and User_Admin or Itil.
+
+    * When searching Service Catalog documents in Amazon Q, the user should have a catalog role.
+
+    * When searching the Incident document in Amazon Q, the user should have the incident_manager role.