AWS managedservices documentation change
Summary
Updated permission boundary onboarding reference to 'managed automation'
Security assessment
Change affects process labeling but maintains existing security controls around permission boundary enforcement and custom deny actions.
Diff
diff --git a/managedservices/latest/userguide/aip-runtime-checks-perm-boundary.md b/managedservices/latest/userguide/aip-runtime-checks-perm-boundary.md index 0ff5c93dd..a49ddaf30 100644 --- a//managedservices/latest/userguide/aip-runtime-checks-perm-boundary.md +++ b//managedservices/latest/userguide/aip-runtime-checks-perm-boundary.md @@ -9 +9 @@ AMS permission boundary checks help you adhere to the default permission boundar -Use customer-defined permission boundary policy checks to customize deny actions beyond the AMS permission boundary policy defaults. When you onboard to AMS Automated IAM Provisioning using the following change type: Management | Managed account | AMS Automated IAM Provisioning with read-write permissions | [Enable (review required)](https://docs.aws.amazon.com/managedservices/latest/ctref/management-managed-automated-iam-provisioning-with-read-write-permissions-enable-review-required.html) (ct-1706xvvk6j9hf), you can include a list of custom deny actions that specify additional restricted actions. +Use customer-defined permission boundary policy checks to customize deny actions beyond the AMS permission boundary policy defaults. When you onboard to AMS Automated IAM Provisioning using the following change type: Management | Managed account | AMS Automated IAM Provisioning with read-write permissions | [Enable (managed automation)](https://docs.aws.amazon.com/managedservices/latest/ctref/management-managed-automated-iam-provisioning-with-read-write-permissions-enable-review-required.html) (ct-1706xvvk6j9hf), you can include a list of custom deny actions that specify additional restricted actions.