AWS rosa documentation change
Summary
Added documentation about new ROSA managed policies for shared VPC environments
Security assessment
Documents new IAM policies that enforce granular permissions for shared VPCs, which are security features but don't address specific vulnerabilities.
Diff
diff --git a/rosa/latest/userguide/doc-history.md b/rosa/latest/userguide/doc-history.md index 9bf0f3b49..66b558dfa 100644 --- a//rosa/latest/userguide/doc-history.md +++ b//rosa/latest/userguide/doc-history.md @@ -10,0 +11,3 @@ Change| Description| Date +Updated ROSAInstallerPolicy| Updated the AWS managed policy ROSAInstallerPolicy to support the new Capacity Reservations feature in ROSA and improve Kubernetes cluster tag management. For information, see [ROSA updates to AWS managed policies](https://docs.aws.amazon.com/rosa/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-account-updates).| August 7, 2025 +New ROSASharedVPCRoute53Policy| ROSA has released a new managed policy `ROSASharedVPCRoute53Policy` to allow the ROSA installer to configure Route 53 records in shared VPC environments. For information, see [ROSA updates to AWS managed policies](https://docs.aws.amazon.com/rosa/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-account-updates).| August 7, 2025 +New ROSASharedVPCEndpointPolicy| ROSA has released a new managed policy `ROSASharedVPCEndpointPolicy` to allow the ROSA installer to configure VPC endpoints and security groups in shared VPC environments. This policy provides a subset of EC2 permissions tailored for shared VPC use cases. For information, see [ROSA updates to AWS managed policies](https://docs.aws.amazon.com/rosa/latest/userguide/security-iam-awsmanpol.html#security-iam-awsmanpol-account-updates).| August 7, 2025