AWS fsx documentation change
Summary
Updated IAM policies with secretsmanager:ListSecrets permission for credential selection
Security assessment
While the permission change supports security-related credential management, the addition itself is a routine policy update rather than addressing a specific security vulnerability. The documentation update explains required permissions for the new security feature.
Diff
diff --git a/fsx/latest/WindowsGuide/security-iam-awsmanpol.md b/fsx/latest/WindowsGuide/security-iam-awsmanpol.md index eba1238b4..e1c881f2b 100644 --- a//fsx/latest/WindowsGuide/security-iam-awsmanpol.md +++ b//fsx/latest/WindowsGuide/security-iam-awsmanpol.md @@ -91,0 +92,2 @@ This policy includes the following permissions. + * `secretsmanager` – Allows principals to list secrets in AWS Secrets Manager for selecting domain join service account credentials. + @@ -126,0 +129,2 @@ This policy includes the following permissions. + * `secretsmanager` – Allows principals to list secrets in AWS Secrets Manager for selecting domain join service account credentials. + @@ -152,0 +157,2 @@ Change | Description | Date +AmazonFSxConsoleFullAccess – Update to an existing policy | Amazon FSx added a new permission, `secretsmanager:ListSecrets` that allows principals to list secrets in AWS Secrets Manager for selecting domain join service account credentials. | November 5, 2025 +AmazonFSxConsoleReadOnlyAccess – Update to an existing policy | Amazon FSx added a new permission, `secretsmanager:ListSecrets` that allows principals to list secrets in AWS Secrets Manager for selecting domain join service account credentials. | November 3, 2025