AWS IAM documentation change
Summary
Updated principal types list to include specific federated user types
Security assessment
Documentation clarification of existing supported principals without security impact
Diff
diff --git a/IAM/latest/UserGuide/access_policies-cross-account-resource-access.md b/IAM/latest/UserGuide/access_policies-cross-account-resource-access.md index 9c0c81367..2b3dcaea9 100644 --- a//IAM/latest/UserGuide/access_policies-cross-account-resource-access.md +++ b//IAM/latest/UserGuide/access_policies-cross-account-resource-access.md @@ -82 +82 @@ When an account accesses a resource through another account using a resource-bas -The principals that you can specify in a resource based policy include accounts, IAM users, federated users, IAM roles, assumed-role sessions, or AWS services. For more information, see [Specifying a principal](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_principal.html#Principal_specifying). +The principals that you can specify in a resource based policy include accounts, IAM users, AWS STS federated user principals, SAML federated principals, OIDC federated principals, IAM roles, assumed-role sessions, or AWS services. For more information, see [Specifying a principal](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_principal.html#Principal_specifying).