AWS systems-manager documentation change
Summary
Expanded JSON policy formatting and updated region in document ARN
Security assessment
Formatting changes to policy examples and region standardization. Existing security controls remain unchanged.
Diff
diff --git a/systems-manager/latest/userguide/getting-started-restrict-access-quickstart.md b/systems-manager/latest/userguide/getting-started-restrict-access-quickstart.md index c360fdd91..e075ecbae 100644 --- a//systems-manager/latest/userguide/getting-started-restrict-access-quickstart.md +++ b//systems-manager/latest/userguide/getting-started-restrict-access-quickstart.md @@ -272,2 +272,6 @@ JSON - "Action": ["ssmmessages:OpenDataChannel"], - "Resource": ["arn:aws:ssm:*:*:session/${aws:userid}-*"] + "Action": [ + "ssmmessages:OpenDataChannel" + ], + "Resource": [ + "arn:aws:ssm:*:*:session/${aws:userid}-*" + ] @@ -293 +297 @@ JSON - "Resource": "arn:aws:ssm:region:account-id:document/SSM-SessionManagerRunShell" + "Resource": "arn:aws:ssm:us-east-1:account-id:document/SSM-SessionManagerRunShell" @@ -297,2 +301,6 @@ JSON - "Action": ["ssmmessages:OpenDataChannel"], - "Resource": ["arn:aws:ssm:*:*:session/${aws:userid}-*"] + "Action": [ + "ssmmessages:OpenDataChannel" + ], + "Resource": [ + "arn:aws:ssm:*:*:session/${aws:userid}-*" + ]