AWS securityhub documentation change
Summary
Clarified default permissions documentation and maintained reference to IAM policy guidance
Security assessment
The change improves clarity about default permissions but does not introduce new security features or address vulnerabilities. The reference to IAM policies remains unchanged.
Diff
diff --git a/securityhub/latest/userguide/securityhub-accounts-allowed-actions.md b/securityhub/latest/userguide/securityhub-accounts-allowed-actions.md index 185be41f9..851dbd667 100644 --- a//securityhub/latest/userguide/securityhub-accounts-allowed-actions.md +++ b//securityhub/latest/userguide/securityhub-accounts-allowed-actions.md @@ -24 +24 @@ If you set an aggregation Region, the administrator account can view and manage -This table reflects the default permissions for administrator and member accounts. You can use custom IAM policies to further restrict access to Security Hub features and functions. For guidance and examples, see the blog post[ Aligning IAM policies to user personas for AWS Security Hub](https://aws.amazon.com/blogs/security/aligning-iam-policies-to-user-personas-for-aws-security-hub/). +The following tables specify the default permissions for administrator and member accounts. You can use custom IAM policies to further restrict access to Security Hub features and functions. For guidance and examples, see the blog post[ Aligning IAM policies to user personas for AWS Security Hub](https://aws.amazon.com/blogs/security/aligning-iam-policies-to-user-personas-for-aws-security-hub/).