AWS guardduty documentation change
Summary
Updated policy reference from AmazonGuardDutyFullAccess to AmazonGuardDutyFullAccess_v2
Security assessment
This is a routine documentation update to reference the new recommended policy version. No specific security vulnerability is addressed here - it simply directs users to the updated security best practice.
Diff
diff --git a/guardduty/latest/ug/security_iam_id-based-policy-examples.md b/guardduty/latest/ug/security_iam_id-based-policy-examples.md index 003db4cdf..0d8488983 100644 --- a//guardduty/latest/ug/security_iam_id-based-policy-examples.md +++ b//guardduty/latest/ug/security_iam_id-based-policy-examples.md @@ -63 +63 @@ To ensure that users and roles can still use the GuardDuty console, also attach -To grant permissions that various IAM identities (users, groups, and roles) must have, attach the required [AWS managed policy: AmazonGuardDutyFullAccess](./security-iam-awsmanpol.html#security-iam-awsmanpol-AmazonGuardDutyFullAccess) policy to enable GuardDuty. +To grant permissions that various IAM identities (users, groups, and roles) must have, attach the required [AWS managed policy: AmazonGuardDutyFullAccess_v2 (recommended)](./security-iam-awsmanpol.html#security-iam-awsmanpol-AmazonGuardDutyFullAccess-v2) policy to enable GuardDuty.