AWS Security ChangesHomeSearch

AWS dms medium security documentation change

Service: dms · 2025-05-03 · Security-related medium

File: dms/latest/userguide/set-up.md

Summary

Removed instructions to edit IAM role trust policy for AWS DMS regional service principals

Security assessment

Removing guidance on configuring trust relationships for IAM roles could lead to misconfigured roles, increasing the risk of unauthorized access. Trust policies are critical for limiting which entities can assume roles, and omitting this step introduces a security risk.

Diff

diff --git a/dms/latest/userguide/set-up.md b/dms/latest/userguide/set-up.md
index a5c6c8568..4a3f2c47a 100644
--- a//dms/latest/userguide/set-up.md
+++ b//dms/latest/userguide/set-up.md
@@ -185 +185 @@ Create AWS Identity and Access Management (IAM) roles to use in your migration p
-  11. On the **Edit trust policy** page, edit the trust relationships for the role to use `schema-conversion.dms.amazonaws.com` and your AWS DMS regional service principal as the trusted entities. This AWS DMS regional service principal has the following format:
+  11. Thes AWS DMS regional service principal has the following format: