AWS Security ChangesHomeSearch

AWS managedservices documentation change

Service: managedservices · 2025-05-22 · Documentation low

File: managedservices/latest/ctexguide/review-walkthroughs.md

Summary

Updated RFC template parameters and changed 'AMS Pattern' to lowercase in multiple locations

Security assessment

The parameter changes (removing ASMGuardRail, adding ExcludeAccounts) could potentially impact security configurations, but there's no explicit security context provided in the diff. The lowercase change is stylistic. No concrete evidence of addressing security vulnerabilities or adding security documentation.

Diff

diff --git a/managedservices/latest/ctexguide/review-walkthroughs.md b/managedservices/latest/ctexguide/review-walkthroughs.md
index b928f1164..707fca976 100644
--- a//managedservices/latest/ctexguide/review-walkthroughs.md
+++ b//managedservices/latest/ctexguide/review-walkthroughs.md
@@ -5 +5 @@
-Delete EBS snapshot (Review Required)Update SNS topicCreate an S3 access pointCreate Custom RDS Parameter GroupAdd event notification to an Amazon S3 bucketUpdate custom deny list for AMS Automated IAM ProvisioningMigrate AWS Managed Account DNS resolver to Route 53 for SALZ accounts (review required)Disassociate resolver rules from VPCUpdate Enhanced MonitoringAssociate VPC with Resolver RuleDeploy AMS Pattern (review required)Share AWS KMS KeyCreate Active Directory TrustOverride Stack Access Duration (Review required)Enable automated IAM provisioning with read-write permissionsAdd VPC static route (review required)Create IAM entity or policyUpdate IAM entity or policyDelete IAM entity or policyUpdate detailed monitoringShare directoryUnshare directoryCreate VPC endpointUpdate RDS storageUpdate an RDS multi-AZ deploymentUpdate an RDS instance typeUpdate S3 bucket versioningUpdate S3 bucket encryptionUpdating an application account (review required)Associate private IP addresses (review required) ct-1pvlhug439gl2Create Amazon RDS option group (review required)Remove TGW static routeCreate for WIGS (Review Required)Modify EBS volumeUpdate AWS Backup plan (review required)Confirm offboardingManagement account: Offboard Application accountDeploy AMS Resource Scheduler SolutionUpdate AMS Resource Scheduler SolutionDelete or deactivate access keyCreate access keyEnable Detailed MonitoringUpdate the DeleteOnTermination option (review required)Update RDS maintainance window (review required)Update RDS performance insights (review required)Create security group (review required)
+Delete EBS snapshot (Review Required)Update SNS topicCreate an S3 access pointCreate Custom RDS Parameter GroupAdd event notification to an Amazon S3 bucketUpdate custom deny list for AMS Automated IAM ProvisioningMigrate AWS Managed Account DNS resolver to Route 53 for SALZ accounts (review required)Disassociate resolver rules from VPCUpdate Enhanced MonitoringAssociate VPC with Resolver RuleDeploy AMS pattern (review required)Share AWS KMS KeyCreate Active Directory TrustOverride Stack Access Duration (Review required)Enable automated IAM provisioning with read-write permissionsAdd VPC static route (review required)Create IAM entity or policyUpdate IAM entity or policyDelete IAM entity or policyUpdate detailed monitoringShare directoryUnshare directoryCreate VPC endpointUpdate RDS storageUpdate an RDS multi-AZ deploymentUpdate an RDS instance typeUpdate S3 bucket versioningUpdate S3 bucket encryptionUpdating an application account (review required)Associate private IP addresses (review required) ct-1pvlhug439gl2Create Amazon RDS option group (review required)Remove TGW static routeCreate for WIGS (Review Required)Modify EBS volumeUpdate AWS Backup plan (review required)Confirm offboardingManagement account: Offboard Application accountDeploy AMS Resource Scheduler SolutionUpdate AMS Resource Scheduler SolutionDelete or deactivate access keyCreate access keyEnable Detailed MonitoringUpdate the DeleteOnTermination option (review required)Update RDS maintainance window (review required)Update RDS performance insights (review required)Create security group (review required)
@@ -31 +31 @@ Delete EBS snapshot (Review Required)Update SNS topicCreate an S3 access pointCr
-  * Deploy AMS Pattern (review required)
+  * Deploy AMS pattern (review required)
@@ -1079 +1079 @@ You receive the ID of the new RFC in the response and can use it to submit and m
-## Deploy AMS Pattern (review required)
+## Deploy AMS pattern (review required)
@@ -1145,5 +1145,9 @@ _TEMPLATE CREATE_ :
-        "Parameters": {
-            "ExcludedTags": "BackupProd,Backup",
-            "ASMGuardRail": "enabled"
-        },
-        "OrganizationalUnit": "ou-9dyd-s2vptest"
+      "ExcludeAccounts": ["123456789012"],
+      "OrganizationalUnitIds": ["ou-9dyd-jvsei4yg"],
+      "Priority": "Medium",
+      "PatternParameters": [
+        {
+          "Name": "Foo",
+          "Value": "Bar"
+        }
+      ]
@@ -2910 +2914 @@ _TEMPLATE CREATE_ :
-  5. Create the RFC, specifying the execution parameters file and the UpdateRdsRfc file:
+  5. Create the RFC, specifying the execution parameters file and the UpdateBucketEncryptionRfc file: