AWS Security ChangesHomeSearch

AWS redshift documentation change

Service: redshift · 2025-07-16 · Documentation low

File: redshift/latest/mgmt/redshift-iam-access-control-identity-based.md

Summary

Added multiple JSON section markers and horizontal rules in IAM policy examples

Security assessment

Formatting changes across various policy examples without modifying security controls or permissions

Diff

diff --git a/redshift/latest/mgmt/redshift-iam-access-control-identity-based.md b/redshift/latest/mgmt/redshift-iam-access-control-identity-based.md
index a7ff66e24..ce7e657d7 100644
--- a//redshift/latest/mgmt/redshift-iam-access-control-identity-based.md
+++ b//redshift/latest/mgmt/redshift-iam-access-control-identity-based.md
@@ -18,0 +19,6 @@ The following shows an example of a permissions policy. The policy allows a user
+JSON
+    
+
+****
+    
+    
@@ -368,0 +376,6 @@ The following example shows the policy document in JSON format to set up a trust
+JSON
+    
+
+****
+    
+    
@@ -392,0 +407,6 @@ For the scheduler to use the `ResizeCluster` operation, add a permission that is
+JSON
+    
+
+****
+    
+    
@@ -430,0 +452,6 @@ The following example shows the policy document in JSON format to set up a trust
+JSON
+    
+
+****
+    
+    
@@ -470,0 +499,6 @@ The following policy shows the permissions required to run SageMaker AI Autopilo
+JSON
+    
+
+****
+    
+    
@@ -621,0 +657,6 @@ The following policy shows the full minimal permissions to allow access to Amazo
+JSON
+    
+
+****
+    
+    
@@ -885,0 +928,6 @@ To allow Amazon Redshift and SageMaker AI to assume the preceding IAM role to in
+JSON
+    
+
+****
+    
+    
@@ -929,0 +979,6 @@ To work with model explanation, make sure that you have the permissions to call
+JSON
+    
+
+****
+    
+    
@@ -955,0 +1012,6 @@ If you want to create Forecast models, we recommend that you use the `AmazonFore
+JSON
+    
+
+****
+    
+    
@@ -986,0 +1050,6 @@ If you want to create Amazon Bedrock models, we recommend that you use the `Amaz
+JSON
+    
+
+****
+    
+    
@@ -1111,0 +1182,6 @@ The following policy allows access to all Amazon Redshift actions on all resourc
+JSON
+    
+
+****
+    
+    
@@ -1132,0 +1210,6 @@ By default, all permissions are denied. However, sometimes you need to explicitl
+JSON
+    
+
+****
+    
+    
@@ -1159,0 +1244,6 @@ The following policy allows a user to create, delete, modify, and reboot all clu
+JSON
+    
+
+****
+    
+    
@@ -1200,0 +1292,6 @@ The following policy allows a user, for example User A, to do the following:
+JSON
+    
+
+****
+    
+    
@@ -1229,0 +1328,6 @@ If User A has allowed User B to access a snapshot, User B must have a policy suc
+JSON
+    
+
+****
+    
+    
@@ -1261,0 +1367,6 @@ The following policy allows a user to copy any snapshot created from the cluster
+JSON
+    
+
+****
+    
+    
@@ -1297,0 +1410,6 @@ Resource-level permissions are not supported for the Amazon EC2 actions that are
+JSON
+    
+
+****
+    
+    
@@ -1357,0 +1477,6 @@ The following example policy allows a user to tag resources with the Amazon Reds
+JSON
+    
+
+****
+    
+    
@@ -1391,0 +1518,6 @@ The following policy enables the `GetCredentials`, `CreateClusterUser`, and `Joi
+JSON
+    
+
+****
+    
+