AWS AmazonRDS documentation change
Summary
Added 'boundary' clarification to IAM policy description for RDS Custom instances
Security assessment
Clarifies use of IAM boundary policies which are security best practices, but does not indicate a specific security issue being addressed
Diff
diff --git a/AmazonRDS/latest/UserGuide/custom-setup-sqlserver.md b/AmazonRDS/latest/UserGuide/custom-setup-sqlserver.md index 76b5e6592..3c12493d2 100644 --- a//AmazonRDS/latest/UserGuide/custom-setup-sqlserver.md +++ b//AmazonRDS/latest/UserGuide/custom-setup-sqlserver.md @@ -719 +719 @@ The `AmazonRDSCustomInstanceProfileRolePolicy` managed policy restricts the inst -For example, the following policy restricts instance profile role to access a specific AWS KMS key and limits access to RDS Custom managed resources across instances which are using different AWS KMS keys. +For example, the following boundary policy restricts instance profile role to access a specific AWS KMS key and limits access to RDS Custom managed resources across instances which are using different AWS KMS keys.