AWS AmazonRDS documentation change
Summary
Restructured IAM policy JSON with explicit Sids and updated KMS key ARN format
Security assessment
Improves documentation of least-privilege IAM policies for KMS access, which enhances security posture but doesn't fix a specific vulnerability.
Diff
diff --git a/AmazonRDS/latest/UserGuide/SQLServer.Procedural.Importing.Native.Enabling.md b/AmazonRDS/latest/UserGuide/SQLServer.Procedural.Importing.Native.Enabling.md index d57bd6d9c..7143e37b8 100644 --- a//AmazonRDS/latest/UserGuide/SQLServer.Procedural.Importing.Native.Enabling.md +++ b//AmazonRDS/latest/UserGuide/SQLServer.Procedural.Importing.Native.Enabling.md @@ -141,2 +141 @@ JSON - "Statement": - [ + "Statement": [ @@ -143,0 +143 @@ JSON + "Sid": "AllowAccessToKey", @@ -145,2 +145 @@ JSON - "Action": - [ + "Action": [ @@ -152 +151 @@ JSON - "Resource": "arn:aws:kms:region:account-id:key/key-id" + "Resource": "arn:aws:kms:us-east-1:123456789012:key/key-id" @@ -154,0 +154 @@ JSON + "Sid": "AllowAccessToS3", @@ -156,2 +156 @@ JSON - "Action": - [ + "Action": [ @@ -163,0 +163 @@ JSON + "Sid": "GetS3Info", @@ -165,2 +165 @@ JSON - "Action": - [ + "Action": [