PCP-5892 - Minimum Permissions Revamp for AWS

[benradstone]

NOTE: This may not be merged into 4.8.b due to a potential delay in QA sign-off.

✅ Pull Request Checklist

Before submitting your PR for review, please complete this checklist to ensure quality.

Checklist

• The PR description in the Describe the Change section explains what changed and
  provides any additional context.
• A Jira ticket is provided in the Jira Tickets section AND in the PR title. If this PR has
  no corresponding Jira ticket, then please indicate so in this section.
• Preview links are for all affected pages are provided in the Changed Pages. If this PR
  makes no user-facing changes, please indicate so in this section.
• Conduct a self-review for your pages using your preview links. Verify grammar, clarity, and accuracy.
• Check formatting for your pages
  • Verify indentations, admonitions, and tables (if applicable).
  • Verify all images display.
• Ensure all Vale comments are resolved.
  • If required, raise a PR to modify the
    Vale accept list.
    This can be done later, but leave a note if required.
• All CI jobs have completed successfully.
• Add Backport labels if the change should be reflected in previous versions. If required, remember to add the
  auto-backport label, as well as the backport-version-** labels.
• Outside review: Does this PR require review outside of Docs? If yes, tag the appropriate reviewer (for
  example, Engineering, Product, etc.)
• Add the notify-slack label once this checklist has been completed. The team will be notified and review your PR.

Good job! 👏👏👏

---

📝 Describe the Change

This PR documents the new minimum permissions policies for AWS and the resulting steps to enable them.

It also reorganises the Required IAM Policies page to flow better.

---

💻 Changed Pages

• Required IAM Policies
• Release Notes

---

Related PRs

• https://github.com/spectrocloud/required-permissions-data/pull/64

---

🎫 Jira Tickets

PCP-5892

[github-actions]

🤖 Netlify configured to enable preview build for branch: PCP-5892 . Subsequent commits will automatically trigger a Netlify build preview.

[netlify]

✅ Deploy Preview for docs-spectrocloud ready!

Name	Link
🔨 Latest commit	ed1d833
🔍 Latest deploy log	https://app.netlify.com/projects/docs-spectrocloud/deploys/698b7512c608270008ffa0ef
😎 Deploy Preview	https://deploy-preview-9514--docs-spectrocloud.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[github-actions]

✅ Slack reviewers notified at 2026-02-09T18:46:01Z \n

[iceman0296]

Should we mention that the creation of roles and attaching policies to those roles doesn't apply to the min permissions use case?

IIUC, this only happens if the core iam policies are used right?

[benradstone]

I don't know if that is true. We would need engineering to confirm. I've posed the question to them now.