AWS controltower documentation change
Summary
Added entry for AWSControlTowerServiceRolePolicy update allowing management of Config rules for controls
Security assessment
Documents expanded permissions for managing security controls via AWS Config rules but does not indicate resolution of a vulnerability.
Diff
diff --git a/controltower/latest/userguide/managed-policies-table.md b/controltower/latest/userguide/managed-policies-table.md index 430fd811d..dc14092b9 100644 --- a//controltower/latest/userguide/managed-policies-table.md +++ b//controltower/latest/userguide/managed-policies-table.md @@ -10,0 +11 @@ Change | Description | Date +[AWSControlTowerServiceRolePolicy](./access-control-managing-permissions.html#AWSControlTowerServiceRolePolicy) – Update to an existing policy | AWS Control Tower added new permissions that allow customers to enable and disable service-linked AWS Config rules. This change is needed so that customers can manage controls that are deployed by Config rules. | June 5, 2025 @@ -25 +26 @@ To use the Amazon Web Services Documentation, Javascript must be enabled. Please -Permissions Required to Use the AWS Control Tower Console +Permissions Required to use the AWS Control Tower console