AWS efs documentation change
Summary
Simplified security group configuration instructions and updated IAM documentation link
Security assessment
Clarifies security group assignment process but doesn't introduce new security features or address vulnerabilities. Link update maintains existing security documentation.
Diff
diff --git a/efs/latest/ug/creating-using-create-fs.md b/efs/latest/ug/creating-using-create-fs.md index ce52da565..5dbbd4551 100644 --- a//efs/latest/ug/creating-using-create-fs.md +++ b//efs/latest/ug/creating-using-create-fs.md @@ -259,3 +259 @@ In Step 2, you configure the file system's network settings, including the VPC a - * **Security groups** – You can specify one or more security groups for the mount target. For more information, see [Using VPC security groups for Amazon EC2 instances and mount targets](./network-access.html). - -To add another security group, or to change the security group, choose **Choose security groups** and add another security group from the list. If you don't want to use the default security group, you can delete it. For more information, see [Creating security groups](./accessing-fs-create-security-groups.html). + * **Security groups** – By default, Amazon EFS chooses the default security group for the VPC. To change the security group, delete the assigned group and then choose the group from the **Choose security groups** list. You can specify one or more security groups for the mount target. For more information, see [Using VPC security groups](./network-access.html). @@ -272 +270 @@ To add another security group, or to change the security group, choose **Choose -Optionally, you can create a file system policy for your file system. An EFS file system policy is an IAM resource policy that you use to control NFS client access to the file system. For more information, see [Using IAM to control file system data access](./iam-access-control-nfs-efs.html). +Optionally, you can create a file system policy for your file system. An EFS file system policy is an IAM resource policy that you use to control NFS client access to the file system. For more information, see [Using IAM to control access to file systems](./iam-access-control-nfs-efs.html).