AWS emr documentation change
Summary
Added IAM policy example for Amazon Linux 2023 repositories in us-east-1
Security assessment
Expands security documentation for repository access but does not resolve a vulnerability.
Diff
diff --git a/emr/latest/ManagementGuide/private-subnet-iampolicy.md b/emr/latest/ManagementGuide/private-subnet-iampolicy.md index 7bfcf99c9..8d01a75ea 100644 --- a//emr/latest/ManagementGuide/private-subnet-iampolicy.md +++ b//emr/latest/ManagementGuide/private-subnet-iampolicy.md @@ -64 +64 @@ JSON -The following example policy provides the permissions required to access Amazon Linux 2 repositories. Amazon Linux 2 AMI is the default. +The following example policy provides the permissions required to access Amazon Linux 2 repositories in the us-east-1 region. @@ -81,0 +82,17 @@ The following example policy provides the permissions required to access Amazon +The following example policy provides the permissions required to access Amazon Linux 2023 repositories in the us-east-1 region. + + + { + "Statement": [ + { + "Sid": "AmazonLinux2023AMIRepositoryAccess", + "Effect": "Allow", + "Principal": "*", + "Action": "s3:GetObject", + "Resource": [ + "arn:aws:s3:::al2023-repos-us-east-1-de612dc2/*" + ] + } + ] + } +