AWS Security ChangesHomeSearch

AWS emr documentation change

Service: emr · 2026-04-01 · Documentation low

File: emr/latest/ManagementGuide/emr-plan-ha-applications.md

Summary

Added documentation about features not available in EMR clusters with multiple primary nodes, specifically runtime role-based access control and IAM Identity Center integration

Security assessment

This change adds documentation about security-related features (runtime role-based access control and IAM Identity Center integration) that are not available in high-availability clusters with multiple primary nodes. While it documents security feature limitations, there is no evidence this addresses a specific security vulnerability or incident.

Diff

diff --git a/emr/latest/ManagementGuide/emr-plan-ha-applications.md b/emr/latest/ManagementGuide/emr-plan-ha-applications.md
index 4a6d8838d..b94f6804d 100644
--- a//emr/latest/ManagementGuide/emr-plan-ha-applications.md
+++ b//emr/latest/ManagementGuide/emr-plan-ha-applications.md
@@ -131,0 +132,4 @@ The following Amazon EMR features are currently not available in an Amazon EMR c
+  * Runtime role-based access control. For more information, see [Additional considerations](./emr-steps-runtime-roles.html#emr-steps-runtime-roles-considerations) in [Runtime roles for Amazon EMR steps](./emr-steps-runtime-roles.html).
+
+  * Amazon EMR integration with AWS IAM Identity Center (trusted identity propagation). For more information, see [Integrate Amazon EMR with AWS IAM Identity Center](./emr-idc.html).
+