AWS Security ChangesHomeSearch

AWS eks medium security documentation change

Service: eks · 2026-03-16 · Security-related medium

File: eks/latest/userguide/authenticate-oidc-identity-provider.md

Summary

Corrected ARN syntax in resource policies

Security assessment

Proper ARN formatting is critical for IAM policy effectiveness. Previous placeholders might have caused policy misconfigurations with potential unauthorized access risks.

Diff

diff --git a/eks/latest/userguide/authenticate-oidc-identity-provider.md b/eks/latest/userguide/authenticate-oidc-identity-provider.md
index 1d2d1e912..0dc60518d 100644
--- a//eks/latest/userguide/authenticate-oidc-identity-provider.md
+++ b//eks/latest/userguide/authenticate-oidc-identity-provider.md
@@ -134 +134 @@ If you want to prevent an OIDC identity provider from being associated with a cl
-                "Resource": "&region-arn;eks:us-west-2:111122223333:cluster/*"
+                "Resource": "arn:aws:eks:us-west-2:111122223333:cluster/*"
@@ -158 +158 @@ The following example policy allows OIDC identity provider association if the `c
-                "Resource": "&region-arn;eks:us-west-2:111122223333:cluster/my-instance",
+                "Resource": "arn:aws:eks:us-west-2:111122223333:cluster/my-instance",
@@ -169 +169 @@ The following example policy allows OIDC identity provider association if the `c
-                "Resource": "&region-arn;eks:us-west-2:111122223333:cluster/my-instance",
+                "Resource": "arn:aws:eks:us-west-2:111122223333:cluster/my-instance",