AWS config medium security documentation change
Summary
Updated documentation date and added entry about IAM policy permission expansions for multiple AWS services
Security assessment
Explicitly documents expanded IAM permissions for security-critical services like AWS Backup, CloudFront, and Systems Manager. This indicates security policy updates affecting access control.
Diff
diff --git a/config/latest/developerguide/DocumentHistory.md b/config/latest/developerguide/DocumentHistory.md index adde95828..ee1437dbb 100644 --- a//config/latest/developerguide/DocumentHistory.md +++ b//config/latest/developerguide/DocumentHistory.md @@ -13 +13 @@ The following table describes the important changes to the documentation for AWS - * Latest documentation update: June 17, 2025 + * Latest documentation update: June 24, 2025 @@ -19,0 +20 @@ Change| Description| Date +Security IAM updates| The `AWS_ConfigRole` policy and `AWSConfigServiceRolePolicy` policy now grants additional permissions for AWS Backup gateway, AWS Billing and Cost Management, Amazon Bedrock, AWS CloudFormation, Amazon CloudFront, AWS Entity Resolution, AWS IoT Core Device Advisor, AWS Lambda, AWS Network Manager, AWS Private Certificate Authority, Amazon Redshift, Amazon S3 Tables, AWS Systems Manager Quick Setup. For more information, see [AWS managed policies for AWS Config](https://docs.aws.amazon.com/config/latest/developerguide/security-iam-awsmanpol.html).| June 18, 2025