AWS Security ChangesHomeSearch

AWS directoryservice documentation change

Service: directoryservice · 2025-06-28 · Documentation low

File: directoryservice/latest/admin-guide/ad_connector_clientauth.md

Summary

Fixed apostrophe formatting in user possessive references (curly apostrophes to straight apostrophes)

Security assessment

Changes are purely grammatical/typographical corrections of apostrophe characters. No security-related content was added or modified. The technical requirements for certificates and Kerberos delegation remain unchanged.

Diff

diff --git a/directoryservice/latest/admin-guide/ad_connector_clientauth.md b/directoryservice/latest/admin-guide/ad_connector_clientauth.md
index 4e3c928aa..f62a79852 100644
--- a//directoryservice/latest/admin-guide/ad_connector_clientauth.md
+++ b//directoryservice/latest/admin-guide/ad_connector_clientauth.md
@@ -85 +85 @@ The following are some of the requirements for the user certificate:
-  * The user’s smart card certificate has a Subject Alternative Name (SAN) of the user’s userPrincipalName (UPN).
+  * The user's smart card certificate has a Subject Alternative Name (SAN) of the user's userPrincipalName (UPN).
@@ -87 +87 @@ The following are some of the requirements for the user certificate:
-  * The user’s smart card certificate has Enhanced Key Usage as the smart card log-on (1.3.6.1.4.1.311.20.2.2) Client Authentication (1.3.6.1.5.5.7.3.2).
+  * The user's smart card certificate has Enhanced Key Usage as the smart card log-on (1.3.6.1.4.1.311.20.2.2) Client Authentication (1.3.6.1.5.5.7.3.2).
@@ -89 +89 @@ The following are some of the requirements for the user certificate:
-  * The Online Certificate Status Protocol (OCSP) information for the user’s smart card certificate should be Access Method=On-line Certificate Status Protocol (1.3.6.1.5.5.7.48.1) in the Authority Information Access.
+  * The Online Certificate Status Protocol (OCSP) information for the user's smart card certificate should be Access Method=On-line Certificate Status Protocol (1.3.6.1.5.5.7.48.1) in the Authority Information Access.
@@ -155 +155 @@ To use smart card authentication with AD Connector, you must enable **Kerberos C
-Kerberos Constrained Delegation is a feature in Windows Server. This feature enables administrators to specify and enforce application trust boundaries by limiting the scope where application services can act on a user’s behalf. For more information, see [Kerberos constrained delegation](https://docs.aws.amazon.com/directoryservice/latest/admin-guide/ms_ad_key_concepts_kerberos.html). 
+Kerberos Constrained Delegation is a feature in Windows Server. This feature enables administrators to specify and enforce application trust boundaries by limiting the scope where application services can act on a user's behalf. For more information, see [Kerberos constrained delegation](https://docs.aws.amazon.com/directoryservice/latest/admin-guide/ms_ad_key_concepts_kerberos.html).