AWS Security ChangesHomeSearch

AWS IAM documentation change

Service: IAM · 2025-06-13 · Documentation low

File: IAM/latest/UserGuide/id_credentials_temp_control-access_monitor.md

Summary

Updated terminology from 'federated users' to 'federated principals' and fixed a typo in a link anchor text ('princpals' to 'principals')

Security assessment

The changes are terminology updates to use the more precise IAM concept of 'principals' instead of 'users', and a typo fix. There is no evidence of addressing a security vulnerability or introducing security features.

Diff

diff --git a/IAM/latest/UserGuide/id_credentials_temp_control-access_monitor.md b/IAM/latest/UserGuide/id_credentials_temp_control-access_monitor.md
index 9dbdacd96..168d2d581 100644
--- a//IAM/latest/UserGuide/id_credentials_temp_control-access_monitor.md
+++ b//IAM/latest/UserGuide/id_credentials_temp_control-access_monitor.md
@@ -194 +194 @@ The `AssumeRole` operation returns a set of temporary credentials that you can u
-The principal calling the `AssumeRoleWithSAML` operation is authenticated using SAML-based federation. This operation returns a set of temporary credentials that you can use to access AWS resources. For more information about using SAML-based federation for AWS Management Console access, see [Enabling SAML 2.0 federated users to access the AWS Management Console](./id_roles_providers_enable-console-saml.html). For details about AWS CLI or AWS API access, see [SAML 2.0 federation](./id_roles_providers_saml.html). For a tutorial of setting up SAML federation for your Active Directory users, see [AWS Federated Authentication with Active Directory Federation Services (ADFS)](https://aws.amazon.com/blogs/security/aws-federated-authentication-with-active-directory-federation-services-ad-fs/) in the AWS Security Blog. 
+The principal calling the `AssumeRoleWithSAML` operation is authenticated using SAML-based federation. This operation returns a set of temporary credentials that you can use to access AWS resources. For more information about using SAML-based federation for AWS Management Console access, see [Enabling SAML 2.0 federated princpals to access the AWS Management Console](./id_roles_providers_enable-console-saml.html). For details about AWS CLI or AWS API access, see [SAML 2.0 federation](./id_roles_providers_saml.html). For a tutorial of setting up SAML federation for your Active Directory users, see [AWS Federated Authentication with Active Directory Federation Services (ADFS)](https://aws.amazon.com/blogs/security/aws-federated-authentication-with-active-directory-federation-services-ad-fs/) in the AWS Security Blog. 
@@ -202 +202 @@ As an administrator, you can allow members of your company directory to federate
-  3. [Configure a role and its permissions in AWS for your federated users](./id_roles_create_for-idp_saml.html).
+  3. [Configure a role and its permissions in AWS for your SAML federated principals](./id_roles_create_for-idp_saml.html).