AWS mgn medium security documentation change
Summary
Updated CertificateAuthority guidance to require IPs in certificate SAN field
Security assessment
Explicit requirement for IPs in certificate SAN field addresses potential certificate validation failures and man-in-the-middle risks in WinRM connections, constituting a security configuration improvement.
Diff
diff --git a/mgn/latest/ug/connector-register-server-credentials.md b/mgn/latest/ug/connector-register-server-credentials.md index e9926064f..185c7c327 100644 --- a//mgn/latest/ug/connector-register-server-credentials.md +++ b//mgn/latest/ug/connector-register-server-credentials.md @@ -37 +37 @@ In order to perform actions on your source server, you must provide source serve - * **CertificateAuthority** (Optional) - The certificate authority to validate during the WinRM connection. + * **CertificateAuthority** (Optional) - Include the source server IPs in the certificate's SAN field to enable communication.