AWS grafana documentation change
Summary
Replaced 'AWS CloudFormation StackSets' with 'CloudFormation StackSets'
Security assessment
Terminology update without modifying IAM permissions (`CreateRole`, `CreatePolicy`, etc.) or security mechanisms.
Diff
diff --git a/grafana/latest/userguide/authentication-in-AMG-SSO.md b/grafana/latest/userguide/authentication-in-AMG-SSO.md index 725f3fa04..47e04dee5 100644 --- a//grafana/latest/userguide/authentication-in-AMG-SSO.md +++ b//grafana/latest/userguide/authentication-in-AMG-SSO.md @@ -36 +36 @@ To grant permissions to create and manage Amazon Managed Grafana workspaces in a -If you want to use service-managed permissions when you create an Amazon Managed Grafana workspace, the role that creates the workspace must also have the `iam:CreateRole`, `iam:CreatePolicy`, and `iam:AttachRolePolicy` permissions. These are required to use AWS CloudFormation StackSets to deploy policies that allow you to read data sources in the organization's accounts. +If you want to use service-managed permissions when you create an Amazon Managed Grafana workspace, the role that creates the workspace must also have the `iam:CreateRole`, `iam:CreatePolicy`, and `iam:AttachRolePolicy` permissions. These are required to use CloudFormation StackSets to deploy policies that allow you to read data sources in the organization's accounts.