AWS Security ChangesHomeSearch

AWS IAM documentation change

Service: IAM · 2026-06-25 · Documentation low

File: IAM/latest/UserGuide/access_policies_identity-vs-resource.md

Summary

Added AWS Sign-In resources to the list of examples supporting resource-based policies

Security assessment

This change expands the list of services supporting resource-based policies but contains no evidence of addressing a security vulnerability or weakness. Resource-based policies are a standard security feature, but the update doesn't introduce new security documentation.

Diff

diff --git a/IAM/latest/UserGuide/access_policies_identity-vs-resource.md b/IAM/latest/UserGuide/access_policies_identity-vs-resource.md
index 5fad79616..b3290a649 100644
--- a//IAM/latest/UserGuide/access_policies_identity-vs-resource.md
+++ b//IAM/latest/UserGuide/access_policies_identity-vs-resource.md
@@ -13 +13 @@ A policy is an object in AWS that, when associated with an identity or resource,
-**Resource-based policies** are attached to a resource. For example, you can attach resource-based policies to Amazon S3 buckets, Amazon SQS queues, VPC endpoints, AWS Key Management Service encryption keys, and Amazon DynamoDB tables and streams. For a list of services that support resource-based policies, see [AWS services that work with IAM](./reference_aws-services-that-work-with-iam.html).
+**Resource-based policies** are attached to a resource. For example, you can attach resource-based policies to Amazon S3 buckets, Amazon SQS queues, VPC endpoints, AWS Key Management Service encryption keys, Amazon DynamoDB tables and streams, and AWS Sign-In resources. For a list of services that support resource-based policies, see [AWS services that work with IAM](./reference_aws-services-that-work-with-iam.html).