AWS resilience-hub medium security documentation change
Summary
Updated IAM policy requirements, replacing AWSResilienceHubAsssessmentExecutionPolicy with AWSResilienceHubV2AssessmentExecutionPolicy and adding policy details link
Security assessment
Change documents a new IAM policy with potentially updated permissions, indicating security-related permission adjustments. Explicitly states the policy replacement and links to security documentation.
Diff
diff --git a/resilience-hub/latest/userguide/next-gen-iam-reference.md b/resilience-hub/latest/userguide/next-gen-iam-reference.md index b240da3ea..e56590885 100644 --- a//resilience-hub/latest/userguide/next-gen-iam-reference.md +++ b//resilience-hub/latest/userguide/next-gen-iam-reference.md @@ -31 +31,5 @@ You can create an IAM role in the AWS IAM console. Choose **Custom trust policy* -For permissions, choose the `AWSResilienceHubAsssessmentExecutionPolicy` managed policy and the `ReadOnlyAccess` managed policy. The `ReadOnlyAccess` policy is required for the best performance of the failure mode assessment. +For permissions, choose the `AWSResilienceHubV2AssessmentExecutionPolicy` managed policy. This policy grants read-only access to AWS services for resilience discovery, assessment, and management. + +###### Note + +The `AWSResilienceHubV2AssessmentExecutionPolicy` replaces the previous `AWSResilienceHubAsssessmentExecutionPolicy` for use with Next generation Resilience Hub. For details about the permissions included in this policy, see [AWSResilienceHubV2AssessmentExecutionPolicy](https://docs.aws.amazon.com/resilience-hub/latest/userguide/security-iam-awsmanpol.html#security_iam_aws-v2-assessment-policy).