AWS IAM documentation change
Summary
Updated explanation of complex access paths to emphasize combination of identity policies and resource policies
Security assessment
Clarifies how access paths are analyzed by Access Analyzer (a security tool), but does not address a specific vulnerability or weakness
Diff
diff --git a/IAM/latest/UserGuide/access-analyzer-concepts.md b/IAM/latest/UserGuide/access-analyzer-concepts.md index da23fb3b4..2702e5754 100644 --- a//IAM/latest/UserGuide/access-analyzer-concepts.md +++ b//IAM/latest/UserGuide/access-analyzer-concepts.md @@ -55 +55 @@ By creating an analyzer dedicated to internal access to your selected resources, - * Complex access paths where a principal gains access through a chain of permissions that might not be immediately obvious + * Complex access paths where a principal gains access based on the combination of identity policies and resource policies