AWS Security ChangesHomeSearch

AWS managedservices documentation change

Service: managedservices · 2025-08-28 · Documentation low

File: managedservices/latest/userguide/setting-permissions.md

Summary

Updated instructions for requesting custom IAM roles/instance profiles with specific change type IDs and categorization

Security assessment

The change clarifies procedures for creating IAM roles/profiles but does not address a specific security vulnerability. However, IAM configuration is inherently security-related as it governs access control. The update improves documentation accuracy for security-critical resource provisioning.

Diff

diff --git a/managedservices/latest/userguide/setting-permissions.md b/managedservices/latest/userguide/setting-permissions.md
index 4a0def1d4..2e1edc110 100644
--- a//managedservices/latest/userguide/setting-permissions.md
+++ b//managedservices/latest/userguide/setting-permissions.md
@@ -15 +15 @@ AMS uses an IAM role to set user permissions through your federation service and
-You can request, with an AMS service request, or a Management | Other | Other | Create CT, a custom IAM role or instance profile. See the descriptions of each in this section.
+You can request a custom IAM role with the Deployment | Advanced stack components | Identity and Access Management (IAM) | Create entity or policy (review required) change type (ct-3dpd8mdd9jn1r), or an IAM instance profile with the Management | Applications | IAM instance profile | Create Management | Applications | IAM instance profile | Create (review required) change type (ct-0ixp4ch2tiu04). See the descriptions of each in this section.