AWS Security ChangesHomeSearch

AWS amazonq high security documentation change

Service: amazonq · 2025-06-16 · Security-related high

File: amazonq/latest/qbusiness-ug/sharepoint-cloud-prereqs.md

Summary

Removed requirement to deactivate MFA for SharePoint integration and fixed a broken URL reference.

Security assessment

The removal of the MFA deactivation instruction addresses a security weakness by no longer advising users to disable a critical security control (multi-factor authentication). This change directly improves security posture by eliminating a risky configuration recommendation.

Diff

diff --git a/amazonq/latest/qbusiness-ug/sharepoint-cloud-prereqs.md b/amazonq/latest/qbusiness-ug/sharepoint-cloud-prereqs.md
index a572aa5e9..721bbe52a 100644
--- a//amazonq/latest/qbusiness-ug/sharepoint-cloud-prereqs.md
+++ b//amazonq/latest/qbusiness-ug/sharepoint-cloud-prereqs.md
@@ -44,2 +43,0 @@ For more information on connecting SharePoint (Online) to Amazon Q Business, see
-  * Deactivate multi-factor authentication (MFA) in your SharePoint account, so that Amazon Q is not blocked from crawling your SharePoint content. 
-
@@ -50 +48 @@ For more information on connecting SharePoint (Online) to Amazon Q Business, see
-If you want to crawl specific sites, you can choose to restrict permissions to specific sites rather than all sites available in the domain. To do this, use the Sites.Selected (Application) permission. With this API permission, you need to set access permission on every site explicitly through the Microsoft Graph API. For more information, see [Microsoft's blog on Sites.Selected permissions QQQQ](https://techcommunity.microsoft.com/t5/microsoft-sharepoint-blog/develop-applications-that-use-sites-selected-permissions-for-spo/ba-p/3790476).
+If you want to crawl specific sites, you can choose to restrict permissions to specific sites rather than all sites available in the domain. To do this, use the Sites.Selected (Application) permission. With this API permission, you need to set access permission on every site explicitly through the Microsoft Graph API. For more information, see [Microsoft's blog on Sites.Selected permissions](https://techcommunity.microsoft.com/t5/microsoft-sharepoint-blog/develop-applications-that-use-sites-selected-permissions-for-spo/ba-p/3790476).