AWS Security ChangesHomeSearch

AWS IAM documentation change

Service: IAM · 2026-05-01 · Documentation low

File: IAM/latest/UserGuide/id_credentials_mfa_configure-api-require.md

Summary

Fixed verb conjugation from 'sign in' to 'signs in' for IAM user MFA authentication context

Security assessment

Grammatical correction only. Doesn't change MFA security documentation or address vulnerabilities.

Diff

diff --git a/IAM/latest/UserGuide/id_credentials_mfa_configure-api-require.md b/IAM/latest/UserGuide/id_credentials_mfa_configure-api-require.md
index d7ec2c7ff..4e92bb72d 100644
--- a//IAM/latest/UserGuide/id_credentials_mfa_configure-api-require.md
+++ b//IAM/latest/UserGuide/id_credentials_mfa_configure-api-require.md
@@ -115 +115 @@ The purpose of the `GetSessionToken` operation is to authenticate the user using
-AWS CloudTrail logs will contain MFA information when the IAM user sign in with MFA. If the IAM user assumes an IAM role, CloudTrail will also log `mfaAuthenticated: true` in the `sessionContext` attributes for actions performed using the assumed role. However, CloudTrail logging is separate from what IAM requires when API calls are made with the assumed role's credentials. For more information, see [CloudTrail userIdentity Element](https://docs.aws.amazon.com//awscloudtrail/latest/userguide/cloudtrail-event-reference-user-identity.html).
+AWS CloudTrail logs will contain MFA information when the IAM user signs in with MFA. If the IAM user assumes an IAM role, CloudTrail will also log `mfaAuthenticated: true` in the `sessionContext` attributes for actions performed using the assumed role. However, CloudTrail logging is separate from what IAM requires when API calls are made with the assumed role's credentials. For more information, see [CloudTrail userIdentity Element](https://docs.aws.amazon.com//awscloudtrail/latest/userguide/cloudtrail-event-reference-user-identity.html).