AWS securityagent medium security documentation change
Summary
Changed 'IAM Users' to 'IAM-only access' in two places within the agent setup instructions.
Security assessment
The terminology update clarifies secure access configuration, explicitly requiring IAM-only authentication. This prevents potential misconfiguration where users might incorrectly assume IAM user access is sufficient without understanding the specific IAM-only requirement. The change addresses a documentation gap that could lead to insecure agent deployments.
Diff
diff --git a/securityagent/latest/userguide/quickstart.md b/securityagent/latest/userguide/quickstart.md index 5a9c79834..377690e23 100644 --- a//securityagent/latest/userguide/quickstart.md +++ b//securityagent/latest/userguide/quickstart.md @@ -23 +23 @@ You need access to AWS Management console to setup a new penetration test - 4. Select **IAM Users** under _User access configuration_ + 4. Select **IAM-only access** under _User access configuration_ @@ -102 +102 @@ You can create and run a penetration test only in the AWS Security Agent web app - 1. Select the **Web app** tab and then **Admin access** to launch the AWS Security Agent Web Application with administrator privileges. This will only work if you had setup your agent using **IAM Users** under _User access configuration_. Alternatively, you will need to add users and create a login. + 1. Select the **Web app** tab and then **Admin access** to launch the AWS Security Agent Web Application with administrator privileges. This will only work if you had setup your agent using **IAM-only access** under _User access configuration_. Alternatively, you will need to add users and create a login.