AWS Security ChangesHomeSearch

AWS IAM documentation change

Service: IAM · 2025-06-13 · Documentation low

File: IAM/latest/UserGuide/access_policies-cross-account-resource-access.md

Summary

Updated principal types list to include specific federated user types

Security assessment

Documentation clarification of existing supported principals without security impact

Diff

diff --git a/IAM/latest/UserGuide/access_policies-cross-account-resource-access.md b/IAM/latest/UserGuide/access_policies-cross-account-resource-access.md
index 9c0c81367..2b3dcaea9 100644
--- a//IAM/latest/UserGuide/access_policies-cross-account-resource-access.md
+++ b//IAM/latest/UserGuide/access_policies-cross-account-resource-access.md
@@ -82 +82 @@ When an account accesses a resource through another account using a resource-bas
-The principals that you can specify in a resource based policy include accounts, IAM users, federated users, IAM roles, assumed-role sessions, or AWS services. For more information, see [Specifying a principal](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_principal.html#Principal_specifying).
+The principals that you can specify in a resource based policy include accounts, IAM users, AWS STS federated user principals, SAML federated principals, OIDC federated principals, IAM roles, assumed-role sessions, or AWS services. For more information, see [Specifying a principal](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_principal.html#Principal_specifying).