AWS Security ChangesHomeSearch

AWS singlesignon documentation change

Service: singlesignon · 2025-11-22 · Documentation low

File: singlesignon/latest/userguide/sso-cloudtrail-use-cases.md

Summary

Updated references from 'AWS Directory Service' to 'Directory Service' and fixed a typo in 'information'

Security assessment

Changes involve terminology updates and typo fixes without modifying security practices or addressing vulnerabilities. The user attribute explanations remain functionally unchanged.

Diff

diff --git a/singlesignon/latest/userguide/sso-cloudtrail-use-cases.md b/singlesignon/latest/userguide/sso-cloudtrail-use-cases.md
index b652bddd2..5ec54aaba 100644
--- a//singlesignon/latest/userguide/sso-cloudtrail-use-cases.md
+++ b//singlesignon/latest/userguide/sso-cloudtrail-use-cases.md
@@ -98 +98 @@ IAM Identity Center provides two user attributes that you can use to correlate a
-  * `username` – A customer-provided value that users usually sign in with. The value can change (for example, with a SCIM update). Note that when the identity source is AWS Directory Service, the username that IAM Identity Center emits in CloudTrail matches the username that you enter to authenticate. The username doesn't need to be an exact match to the username in the IAM Identity Center directory. 
+  * `username` – A customer-provided value that users usually sign in with. The value can change (for example, with a SCIM update). Note that when the identity source is Directory Service, the username that IAM Identity Center emits in CloudTrail matches the username that you enter to authenticate. The username doesn't need to be an exact match to the username in the IAM Identity Center directory. 
@@ -105 +105 @@ If you have access to the CloudTrail events but not the IAM Identity Center dire
-The mapping of these two user attributes to corresponding user attributes in an external directory is defined in IAM Identity Center when the identity source is the AWS Directory Service. For infomration, see [Attribute mappings between IAM Identity Center and External Identity Providers directory](./attributemappingsconcept.html). External IdPs that provision users with SCIM have their own mapping. Even if you use the IAM Identity Center directory as the identity source, you can use the `externalId` attribute to cross-reference security principals to your external directory.
+The mapping of these two user attributes to corresponding user attributes in an external directory is defined in IAM Identity Center when the identity source is the Directory Service. For infomration, see [Attribute mappings between IAM Identity Center and External Identity Providers directory](./attributemappingsconcept.html). External IdPs that provision users with SCIM have their own mapping. Even if you use the IAM Identity Center directory as the identity source, you can use the `externalId` attribute to cross-reference security principals to your external directory.