AWS IAM documentation change
Summary
Removed JSON example policy for FIDO security key MFA configuration
Security assessment
The removal of an MFA policy example does not indicate a security issue. This appears to be documentation maintenance rather than addressing vulnerabilities.
Diff
diff --git a/IAM/latest/UserGuide/id_credentials_mfa_fido_supported_configurations.md b/IAM/latest/UserGuide/id_credentials_mfa_fido_supported_configurations.md index 9d05ae7e1..0cc4e7542 100644 --- a//IAM/latest/UserGuide/id_credentials_mfa_fido_supported_configurations.md +++ b//IAM/latest/UserGuide/id_credentials_mfa_fido_supported_configurations.md @@ -193,46 +192,0 @@ JSON -JSON - - -**** - - - - { - "Version": "2012-10-17", - "Statement": [ - { - "Effect": "Allow", - "Action": "iam:EnableMFADevice", - "Resource": "*", - "Condition": { - "StringEquals": { - "iam:RegisterSecurityKey": "Create" - } - } - }, - { - "Effect": "Allow", - "Action": "iam:EnableMFADevice", - "Resource": "*", - "Condition": { - "StringEquals": { - "iam:RegisterSecurityKey": "Activate", - "iam:FIDO-FIPS-140-2-certification": "L2" - } - } - }, - { - "Effect": "Allow", - "Action": "iam:EnableMFADevice", - "Resource": "*", - "Condition": { - "Null": { - "iam:RegisterSecurityKey": "true" - } - } - } - ] - } - - -