AWS Security ChangesHomeSearch

AWS securityhub documentation change

Service: securityhub · 2026-07-13 · Documentation medium

File: securityhub/latest/userguide/securityhub-v2-azure-prereqs.md

Summary

Added Microsoft Entra ID log availability requirements for resource recording

Security assessment

Identical to earlier change: documents log requirements for security monitoring. Ensures proper security visibility but doesn't fix a specific vulnerability.

Diff

diff --git a/securityhub/latest/userguide/securityhub-v2-azure-prereqs.md b/securityhub/latest/userguide/securityhub-v2-azure-prereqs.md
index c19ab74f5..75a76e057 100644
--- a//securityhub/latest/userguide/securityhub-v2-azure-prereqs.md
+++ b//securityhub/latest/userguide/securityhub-v2-azure-prereqs.md
@@ -70,0 +71,7 @@ You must have an Azure tenant in the Azure commercial cloud. Azure Government an
+Microsoft Entra ID log availability
+    
+
+Resource recording requires Microsoft Graph audit logs and sign-in logs from your Microsoft Entra ID tenant. Some Microsoft Entra ID logs require Microsoft Entra ID P1 or P2 licensing.
+
+If the tenant lacks required logs, resource recording might report partial failures. The app registration and Azure role assignments do not supply missing log data.
+