AWS Security ChangesHomeSearch

AWS IAM documentation change

Service: IAM · 2025-06-13 · Documentation low

File: IAM/latest/UserGuide/access_policies_last-accessed.md

Summary

Added 'AWS STS' qualifier to federated user principal reference

Security assessment

Improves technical accuracy of STS federation documentation without addressing security vulnerabilities

Diff

diff --git a/IAM/latest/UserGuide/access_policies_last-accessed.md b/IAM/latest/UserGuide/access_policies_last-accessed.md
index c09da7127..bab6b37a6 100644
--- a//IAM/latest/UserGuide/access_policies_last-accessed.md
+++ b//IAM/latest/UserGuide/access_policies_last-accessed.md
@@ -70 +70 @@ Action last accessed information is not available for any data plane event.
-  * **Report owner** – Only the principal that generates a report can view the report details. This means that when you view the information in the AWS Management Console, you might have to wait for it to generate and load. If you use the AWS CLI or AWS API to get report details, your credentials must match the credentials of the principal that generated the report. If you use temporary credentials for a role or federated user, you must generate and retrieve the report during the same session. For more information about assumed-role session principals, see [AWS JSON policy elements: Principal](./reference_policies_elements_principal.html).
+  * **Report owner** – Only the principal that generates a report can view the report details. This means that when you view the information in the AWS Management Console, you might have to wait for it to generate and load. If you use the AWS CLI or AWS API to get report details, your credentials must match the credentials of the principal that generated the report. If you use temporary credentials for a role or AWS STS federated user principal, you must generate and retrieve the report during the same session. For more information about assumed-role session principals, see [AWS JSON policy elements: Principal](./reference_policies_elements_principal.html).