AWS IAM documentation change
Summary
Simplified CloudFormation reference in policy condition example
Security assessment
Terminology update in a security best practice example, but the actual security guidance about using conditions remains unchanged.
Diff
diff --git a/IAM/latest/UserGuide/best-practices.md b/IAM/latest/UserGuide/best-practices.md index 5bbe29b03..342aa4945 100644 --- a//IAM/latest/UserGuide/best-practices.md +++ b//IAM/latest/UserGuide/best-practices.md @@ -127 +127 @@ You might have IAM users, roles, permissions, policies, or credentials that you -You can specify conditions under which a policy statement is in effect. That way, you can grant access to actions and resources, but only if the access request meets specific conditions. For example, you can write a policy condition to specify that all requests must be sent using TLS. You can also use conditions to grant access to service actions, but only if they are used through a specific AWS service, such as AWS CloudFormation. For more information, see [IAM JSON policy elements: Condition](./reference_policies_elements_condition.html). +You can specify conditions under which a policy statement is in effect. That way, you can grant access to actions and resources, but only if the access request meets specific conditions. For example, you can write a policy condition to specify that all requests must be sent using TLS. You can also use conditions to grant access to service actions, but only if they are used through a specific AWS service, such as CloudFormation. For more information, see [IAM JSON policy elements: Condition](./reference_policies_elements_condition.html).