AWS Security ChangesHomeSearch

AWS AmazonRDS medium security documentation change

Service: AmazonRDS · 2025-06-22 · Security-related medium

File: AmazonRDS/latest/UserGuide/Appendix.SQLServer.Options.Audit.IAM.md

Summary

Corrected IAM policy action from 's3:GetBucketACL' to 's3:GetBucketAcl'

Security assessment

Fixes a case-sensitive IAM policy action name mismatch that could lead to misconfigured permissions for SQL Server Audit. Incorrect permissions could expose audit logs or allow unauthorized access.

Diff

diff --git a/AmazonRDS/latest/UserGuide/Appendix.SQLServer.Options.Audit.IAM.md b/AmazonRDS/latest/UserGuide/Appendix.SQLServer.Options.Audit.IAM.md
index 5880a87dc..b17d3ea16 100644
--- a//AmazonRDS/latest/UserGuide/Appendix.SQLServer.Options.Audit.IAM.md
+++ b//AmazonRDS/latest/UserGuide/Appendix.SQLServer.Options.Audit.IAM.md
@@ -84 +84 @@ In the following example of a permissions policy for SQL Server Audit, we specif
-    	                "s3:GetBucketACL",
+    	                "s3:GetBucketAcl",