AWS IAM documentation change
Summary
Updated terminology from 'federated users' to 'federated principals' and fixed a typo in a link anchor text ('princpals' to 'principals')
Security assessment
The changes are terminology updates to use the more precise IAM concept of 'principals' instead of 'users', and a typo fix. There is no evidence of addressing a security vulnerability or introducing security features.
Diff
diff --git a/IAM/latest/UserGuide/id_credentials_temp_control-access_monitor.md b/IAM/latest/UserGuide/id_credentials_temp_control-access_monitor.md index 9dbdacd96..168d2d581 100644 --- a//IAM/latest/UserGuide/id_credentials_temp_control-access_monitor.md +++ b//IAM/latest/UserGuide/id_credentials_temp_control-access_monitor.md @@ -194 +194 @@ The `AssumeRole` operation returns a set of temporary credentials that you can u -The principal calling the `AssumeRoleWithSAML` operation is authenticated using SAML-based federation. This operation returns a set of temporary credentials that you can use to access AWS resources. For more information about using SAML-based federation for AWS Management Console access, see [Enabling SAML 2.0 federated users to access the AWS Management Console](./id_roles_providers_enable-console-saml.html). For details about AWS CLI or AWS API access, see [SAML 2.0 federation](./id_roles_providers_saml.html). For a tutorial of setting up SAML federation for your Active Directory users, see [AWS Federated Authentication with Active Directory Federation Services (ADFS)](https://aws.amazon.com/blogs/security/aws-federated-authentication-with-active-directory-federation-services-ad-fs/) in the AWS Security Blog. +The principal calling the `AssumeRoleWithSAML` operation is authenticated using SAML-based federation. This operation returns a set of temporary credentials that you can use to access AWS resources. For more information about using SAML-based federation for AWS Management Console access, see [Enabling SAML 2.0 federated princpals to access the AWS Management Console](./id_roles_providers_enable-console-saml.html). For details about AWS CLI or AWS API access, see [SAML 2.0 federation](./id_roles_providers_saml.html). For a tutorial of setting up SAML federation for your Active Directory users, see [AWS Federated Authentication with Active Directory Federation Services (ADFS)](https://aws.amazon.com/blogs/security/aws-federated-authentication-with-active-directory-federation-services-ad-fs/) in the AWS Security Blog. @@ -202 +202 @@ As an administrator, you can allow members of your company directory to federate - 3. [Configure a role and its permissions in AWS for your federated users](./id_roles_create_for-idp_saml.html). + 3. [Configure a role and its permissions in AWS for your SAML federated principals](./id_roles_create_for-idp_saml.html).