AWS organizations documentation change
Summary
Replaced 'Management policies' section with 'Declarative policies', updated policy category references in table, and changed declarative policy examples to specifically reference EC2 policies.
Security assessment
Changes involve terminology updates (Management→Declarative) and service-specific policy examples (EC2 focus). No security vulnerabilities, incidents, or security feature enhancements are referenced. The Security Hub policy reference remains unchanged without new security context.
Diff
diff --git a/organizations/latest/userguide/orgs_manage_policies.md b/organizations/latest/userguide/orgs_manage_policies.md index 8f46f0329..2bbe22c9f 100644 --- a//organizations/latest/userguide/orgs_manage_policies.md +++ b//organizations/latest/userguide/orgs_manage_policies.md @@ -21 +21 @@ The AWS Organizations console displays the enabled or disabled status for each p - * [Management policies](./orgs_manage_policies_management_policies.html) + * [Declarative policies](./orgs_manage_policies_declarative_policies.html) @@ -61 +61 @@ Authorization policies help you to centrally manage the security of AWS accounts -### Management policies +### Declarative policies @@ -63 +63 @@ Authorization policies help you to centrally manage the security of AWS accounts -Management policies help you centrally configure and manage AWS services and their features across an organization. +Declarative policies help you centrally configure and manage AWS services and their features across an organization. @@ -65 +65 @@ Management policies help you centrally configure and manage AWS services and the - * **[Declarative policies](./orgs_manage_policies_declarative.html)** allow you to centrally declare and enforce desired configurations for a given AWS service at scale across an organization. Once attached, the configuration is always maintained when the service adds new features or APIs. + * **[Amazon EC2 policies](./orgs_manage_policies_ec2.html)** allow you to centrally declare and enforce desired configurations for Amazon EC2 at scale across an organization. Once attached, the configuration is always maintained when the service adds new features or APIs. @@ -94,10 +94,10 @@ RCP | Authorization | No | 5 | 5120 characters | No -Declarative policy | Management | Yes | 10 | 10,000 characters | Yes -Backup policy | Management | Yes | 10 | 10,000 characters | Yes -Tag policy | Management | Yes | 10 | 10,000 characters | Yes -Chat applications policy | Management | Yes | 5 | 10,000 characters | Yes -AI services opt-out policy | Management | Yes | 5 | 2500 characters | Yes -Security Hub policy | Management | Yes | 10 | 10,000 characters | Yes -Amazon Inspector policy | Management | Yes | 10 | 10,000 characters | Yes -Amazon Bedrock policy | Management | Yes | 10 | 10,000 characters | Yes -Upgrade rollout policy | Management | Yes | 10 | 10,000 characters | Yes -S3 policy | Management | Yes | 10 | 10,000 characters | Yes +Declarative policy | Declarative | Yes | 10 | 10,000 characters | Yes +Backup policy | Declarative | Yes | 10 | 10,000 characters | Yes +Tag policy | Declarative | Yes | 10 | 10,000 characters | Yes +Chat applications policy | Declarative | Yes | 5 | 10,000 characters | Yes +AI services opt-out policy | Declarative | Yes | 5 | 2500 characters | Yes +Security Hub policy | Declarative | Yes | 10 | 10,000 characters | Yes +Amazon Inspector policy | Declarative | Yes | 10 | 10,000 characters | Yes +Amazon Bedrock policy | Declarative | Yes | 10 | 10,000 characters | Yes +Upgrade rollout policy | Declarative | Yes | 10 | 10,000 characters | Yes +S3 policy | Declarative | Yes | 10 | 10,000 characters | Yes