AWS Security ChangesHomeSearch

AWS amazonq documentation change

Service: amazonq · 2025-05-25 · Documentation low

File: amazonq/latest/qbusiness-ug/aem-server-iam-role.md

Summary

Expanded IAM resource ARNs in policy example

Security assessment

Consistent with other Amazon Q IAM role changes - improves policy documentation without addressing specific security flaws.

Diff

diff --git a/amazonq/latest/qbusiness-ug/aem-server-iam-role.md b/amazonq/latest/qbusiness-ug/aem-server-iam-role.md
index ca2b910e0..71afc8d8d 100644
--- a//amazonq/latest/qbusiness-ug/aem-server-iam-role.md
+++ b//amazonq/latest/qbusiness-ug/aem-server-iam-role.md
@@ -64 +64,4 @@ To connect your data source connector to Amazon Q, you must give Amazon Q an IAM
-          "Resource": "arn:aws:qbusiness:{{region}}:{{source_account}}:application/{{application_id}}/index/{{index_id}}"
+          "Resource": [
+          "arn:aws:qbusiness:{{region}}:{{source_account}}:application/{{application_id}}",
+          "arn:aws:qbusiness:{{region}}:{{source_account}}:application/{{application_id}}/index/{{index_id}}"
+          ]