AWS audit-manager medium security documentation change
Summary
Updated link from ID-based policy example to resource-based policy examples
Security assessment
Correcting policy type reference helps prevent misconfiguration of S3 bucket permissions, addressing potential unauthorized access issues. Directly impacts security posture.
Diff
diff --git a/audit-manager/latest/userguide/evidence-finder-issues.md b/audit-manager/latest/userguide/evidence-finder-issues.md index 649129ab8..99eff19aa 100644 --- a//audit-manager/latest/userguide/evidence-finder-issues.md +++ b//audit-manager/latest/userguide/evidence-finder-issues.md @@ -322 +322 @@ After you've confirmed that you meet the prerequisites, use the following checkl - 1. **Do you have write permissions for the S3 bucket?** You must have write access for the S3 bucket that you're using as the export destination. More specifically, the IAM permissions policy must include an `s3:PutObject` action and the bucket ARN, and list CloudTrail as the service principal. We provide an [example policy](https://docs.aws.amazon.com/audit-manager/latest/userguide/security_iam_id-based-policy-examples.html#full-administrator-access-export-destination) that you can use. + 1. **Do you have write permissions for the S3 bucket?** You must have write access for the S3 bucket that you're using as the export destination. More specifically, the IAM permissions policy must include an `s3:PutObject` action and the bucket ARN, and list CloudTrail as the service principal. We provide an [example policy](https://docs.aws.amazon.com/audit-manager/latest/userguide/security_iam_resource-based-policy-examples.html) that you can use.