AWS fsx documentation change
Summary
Added recommendation to store AD credentials in Secrets Manager rather than plaintext
Security assessment
Promotes secure credential storage practices but doesn't address a specific existing vulnerability. The change improves security documentation by recommending encrypted secret storage over plaintext credentials.
Diff
diff --git a/fsx/latest/ONTAPGuide/self-manage-prereqs.md b/fsx/latest/ONTAPGuide/self-manage-prereqs.md index d9f75829f..09bd7c814 100644 --- a//fsx/latest/ONTAPGuide/self-manage-prereqs.md +++ b//fsx/latest/ONTAPGuide/self-manage-prereqs.md @@ -99,0 +100,2 @@ These represent the minimum set of permissions that are required to join compute +You can store your Active Directory service account credentials in AWS Secrets Manager (recommended) and provide Amazon FSx with a secret ARN to join your Active Directory, or you can provide plaintext credentials. +