AWS dtconsole medium security documentation change
Summary
Updated IAM policy example to use wildcard account ID in Resource ARN
Security assessment
Changing from specific placeholder to wildcard ('*') in IAM policy Resource element could demonstrate less restrictive permissions if implemented as shown, potentially introducing security risks from over-permissive policies.
Diff
diff --git a/dtconsole/latest/userguide/troubleshooting-connections.md b/dtconsole/latest/userguide/troubleshooting-connections.md index 1b36fc636..f3e73f9a0 100644 --- a//dtconsole/latest/userguide/troubleshooting-connections.md +++ b//dtconsole/latest/userguide/troubleshooting-connections.md @@ -123 +123 @@ JSON - "Resource": "insert connection ARN here" + "Resource": "arn:aws:iam::*:role/Service*"