AWS Security ChangesHomeSearch

AWS sagemaker-unified-studio documentation change

Service: sagemaker-unified-studio · 2025-11-22 · Documentation low

File: sagemaker-unified-studio/latest/adminguide/security-iam.md

Summary

Updated session persistence documentation to include IAM Identity Center/SSO context and added Local IDE to affected features.

Security assessment

Clarifies session management behavior (security consideration) and expands coverage to new features, but doesn't address a specific vulnerability.

Diff

diff --git a/sagemaker-unified-studio/latest/adminguide/security-iam.md b/sagemaker-unified-studio/latest/adminguide/security-iam.md
index 2f2a7bc3f..4234bebcf 100644
--- a//sagemaker-unified-studio/latest/adminguide/security-iam.md
+++ b//sagemaker-unified-studio/latest/adminguide/security-iam.md
@@ -13 +13 @@ AWS Identity and Access Management (IAM) is an AWS service that helps an adminis
-Note that certain features in Amazon SageMaker Unified Studio may maintain active sessions even after you log out of the Amazon SageMaker Unified Studio. Sometimes, these disconnected sessions can persist for up to 12 hours. Affected features include:
+Certain features in Amazon SageMaker Unified Studio may maintain active sessions even after you log out of your IAM Identity Center/SSO session. Sometimes, these disconnected sessions can persist for up to 12 hours. Affected features include:
@@ -16,0 +17,2 @@ Note that certain features in Amazon SageMaker Unified Studio may maintain activ
+  * Local IDE (Visual Studio Code) Support
+
@@ -84 +86 @@ As a best practice, require human users to use federation with an identity provi
-A _federated identity_ is a user from your enterprise directory, web identity provider, or AWS Directory Service that accesses AWS services using credentials from an identity source. Federated identities assume roles that provide temporary credentials.
+A _federated identity_ is a user from your enterprise directory, web identity provider, or Directory Service that accesses AWS services using credentials from an identity source. Federated identities assume roles that provide temporary credentials.