AWS IAM documentation change
Summary
Added 'AWS STS' qualifier to federated user principal reference
Security assessment
Improves technical accuracy of STS federation documentation without addressing security vulnerabilities
Diff
diff --git a/IAM/latest/UserGuide/access_policies_last-accessed.md b/IAM/latest/UserGuide/access_policies_last-accessed.md index c09da7127..bab6b37a6 100644 --- a//IAM/latest/UserGuide/access_policies_last-accessed.md +++ b//IAM/latest/UserGuide/access_policies_last-accessed.md @@ -70 +70 @@ Action last accessed information is not available for any data plane event. - * **Report owner** – Only the principal that generates a report can view the report details. This means that when you view the information in the AWS Management Console, you might have to wait for it to generate and load. If you use the AWS CLI or AWS API to get report details, your credentials must match the credentials of the principal that generated the report. If you use temporary credentials for a role or federated user, you must generate and retrieve the report during the same session. For more information about assumed-role session principals, see [AWS JSON policy elements: Principal](./reference_policies_elements_principal.html). + * **Report owner** – Only the principal that generates a report can view the report details. This means that when you view the information in the AWS Management Console, you might have to wait for it to generate and load. If you use the AWS CLI or AWS API to get report details, your credentials must match the credentials of the principal that generated the report. If you use temporary credentials for a role or AWS STS federated user principal, you must generate and retrieve the report during the same session. For more information about assumed-role session principals, see [AWS JSON policy elements: Principal](./reference_policies_elements_principal.html).