AWS Security ChangesHomeSearch

AWS IAM documentation change

Service: IAM · 2025-11-19 · Documentation low

File: IAM/latest/UserGuide/best-practices.md

Summary

Simplified CloudFormation reference in policy condition example

Security assessment

Terminology update in a security best practice example, but the actual security guidance about using conditions remains unchanged.

Diff

diff --git a/IAM/latest/UserGuide/best-practices.md b/IAM/latest/UserGuide/best-practices.md
index 5bbe29b03..342aa4945 100644
--- a//IAM/latest/UserGuide/best-practices.md
+++ b//IAM/latest/UserGuide/best-practices.md
@@ -127 +127 @@ You might have IAM users, roles, permissions, policies, or credentials that you
-You can specify conditions under which a policy statement is in effect. That way, you can grant access to actions and resources, but only if the access request meets specific conditions. For example, you can write a policy condition to specify that all requests must be sent using TLS. You can also use conditions to grant access to service actions, but only if they are used through a specific AWS service, such as AWS CloudFormation. For more information, see [IAM JSON policy elements: Condition](./reference_policies_elements_condition.html).
+You can specify conditions under which a policy statement is in effect. That way, you can grant access to actions and resources, but only if the access request meets specific conditions. For example, you can write a policy condition to specify that all requests must be sent using TLS. You can also use conditions to grant access to service actions, but only if they are used through a specific AWS service, such as CloudFormation. For more information, see [IAM JSON policy elements: Condition](./reference_policies_elements_condition.html).