AWS sap medium security documentation change
Summary
Removed note about programmatic steps using administrative privileges
Security assessment
Deleted a contradictory recommendation suggesting administrative privileges over instance-based privileges 'to preserve least privilege'. Removal corrects a potential security misconfiguration risk by eliminating conflicting guidance about privilege escalation.
Diff
diff --git a/sap/latest/sap-hana/sap-hana-pacemaker-rhel-infra-setup.md b/sap/latest/sap-hana/sap-hana-pacemaker-rhel-infra-setup.md index 410de82d1..f53b3a468 100644 --- a//sap/latest/sap-hana/sap-hana-pacemaker-rhel-infra-setup.md +++ b//sap/latest/sap-hana/sap-hana-pacemaker-rhel-infra-setup.md @@ -232,2 +231,0 @@ AWS CLI -The preceding steps can also be performed programmatically. We suggest performing the steps using administrative privileges, instead of instance-based privileges to preserve least privilege. CreateRoute API isn’t necessary for ongoing operations. -