AWS Security ChangesHomeSearch

AWS mgn medium security documentation change

Service: mgn · 2025-04-11 · Security-related medium

File: mgn/latest/ug/connector-register-server-credentials.md

Summary

Updated CertificateAuthority guidance to require IPs in certificate SAN field

Security assessment

Explicit requirement for IPs in certificate SAN field addresses potential certificate validation failures and man-in-the-middle risks in WinRM connections, constituting a security configuration improvement.

Diff

diff --git a/mgn/latest/ug/connector-register-server-credentials.md b/mgn/latest/ug/connector-register-server-credentials.md
index e9926064f..185c7c327 100644
--- a//mgn/latest/ug/connector-register-server-credentials.md
+++ b//mgn/latest/ug/connector-register-server-credentials.md
@@ -37 +37 @@ In order to perform actions on your source server, you must provide source serve
-      * **CertificateAuthority** (Optional) - The certificate authority to validate during the WinRM connection.
+      * **CertificateAuthority** (Optional) - Include the source server IPs in the certificate's SAN field to enable communication.