AWS Security ChangesHomeSearch

AWS securityagent medium security documentation change

Service: securityagent · 2026-01-16 · Security-related medium

File: securityagent/latest/userguide/quickstart.md

Summary

Changed 'IAM Users' to 'IAM-only access' in two places within the agent setup instructions.

Security assessment

The terminology update clarifies secure access configuration, explicitly requiring IAM-only authentication. This prevents potential misconfiguration where users might incorrectly assume IAM user access is sufficient without understanding the specific IAM-only requirement. The change addresses a documentation gap that could lead to insecure agent deployments.

Diff

diff --git a/securityagent/latest/userguide/quickstart.md b/securityagent/latest/userguide/quickstart.md
index 5a9c79834..377690e23 100644
--- a//securityagent/latest/userguide/quickstart.md
+++ b//securityagent/latest/userguide/quickstart.md
@@ -23 +23 @@ You need access to AWS Management console to setup a new penetration test
-  4. Select **IAM Users** under _User access configuration_
+  4. Select **IAM-only access** under _User access configuration_
@@ -102 +102 @@ You can create and run a penetration test only in the AWS Security Agent web app
-  1. Select the **Web app** tab and then **Admin access** to launch the AWS Security Agent Web Application with administrator privileges. This will only work if you had setup your agent using **IAM Users** under _User access configuration_. Alternatively, you will need to add users and create a login.
+  1. Select the **Web app** tab and then **Admin access** to launch the AWS Security Agent Web Application with administrator privileges. This will only work if you had setup your agent using **IAM-only access** under _User access configuration_. Alternatively, you will need to add users and create a login.