AWS fsx documentation change
Summary
Updated SVM AD configuration documentation to include Secrets Manager integration and restructured credential input options
Security assessment
Introduces Secrets Manager as a credential storage option but lacks evidence of addressing a specific security vulnerability. The change improves security documentation by recommending secure credential management practices.
Diff
diff --git a/fsx/latest/ONTAPGuide/update-svm-ad-config.md b/fsx/latest/ONTAPGuide/update-svm-ad-config.md index 7a6276a4e..0e340994c 100644 --- a//fsx/latest/ONTAPGuide/update-svm-ad-config.md +++ b//fsx/latest/ONTAPGuide/update-svm-ad-config.md @@ -31 +31 @@ Select the SVM that you want to update from the list. - * **Service account username** – The username of the service account in your existing Active Directory. Don't include a domain prefix or suffix. For `EXAMPLE\ADMIN`, use `ADMIN`. + * **Service account credentials** – Choose how to provide your service account credentials: @@ -33 +33,9 @@ Select the SVM that you want to update from the list. - * **Service account password** – The password for the Active Directory service account. + * **Option 1** : AWS Secrets Manager secret ARN - The secret containing the username and password for a service account on your Active Directory domain. For more information, see [Storing Active Directory credentials using AWS Secrets Manager](./self-managed-AD-best-practices.html#bp-store-ad-creds-using-secret-manager). + + * **Option 2** : Plaintext credentials + + * **Service account username** – The user name of the service account in your existing Microsoft Active Directory. Don't include a domain prefix or suffix. For example, for `EXAMPLE\ADMIN`, use only `ADMIN`. + + * **Service account password** – The password for the service account. + + * **Confirm password** – The password for the service account.