AWS AmazonRDS medium security documentation change
Summary
Corrected IAM policy action from 's3:GetBucketACL' to 's3:GetBucketAcl'
Security assessment
Fixes a case-sensitive IAM policy action name mismatch that could lead to misconfigured permissions for SQL Server Audit. Incorrect permissions could expose audit logs or allow unauthorized access.
Diff
diff --git a/AmazonRDS/latest/UserGuide/Appendix.SQLServer.Options.Audit.IAM.md b/AmazonRDS/latest/UserGuide/Appendix.SQLServer.Options.Audit.IAM.md index 5880a87dc..b17d3ea16 100644 --- a//AmazonRDS/latest/UserGuide/Appendix.SQLServer.Options.Audit.IAM.md +++ b//AmazonRDS/latest/UserGuide/Appendix.SQLServer.Options.Audit.IAM.md @@ -84 +84 @@ In the following example of a permissions policy for SQL Server Audit, we specif - "s3:GetBucketACL", + "s3:GetBucketAcl",