AWS IAM documentation change
Summary
Fixed verb conjugation from 'sign in' to 'signs in' for IAM user MFA authentication context
Security assessment
Grammatical correction only. Doesn't change MFA security documentation or address vulnerabilities.
Diff
diff --git a/IAM/latest/UserGuide/id_credentials_mfa_configure-api-require.md b/IAM/latest/UserGuide/id_credentials_mfa_configure-api-require.md index d7ec2c7ff..4e92bb72d 100644 --- a//IAM/latest/UserGuide/id_credentials_mfa_configure-api-require.md +++ b//IAM/latest/UserGuide/id_credentials_mfa_configure-api-require.md @@ -115 +115 @@ The purpose of the `GetSessionToken` operation is to authenticate the user using -AWS CloudTrail logs will contain MFA information when the IAM user sign in with MFA. If the IAM user assumes an IAM role, CloudTrail will also log `mfaAuthenticated: true` in the `sessionContext` attributes for actions performed using the assumed role. However, CloudTrail logging is separate from what IAM requires when API calls are made with the assumed role's credentials. For more information, see [CloudTrail userIdentity Element](https://docs.aws.amazon.com//awscloudtrail/latest/userguide/cloudtrail-event-reference-user-identity.html). +AWS CloudTrail logs will contain MFA information when the IAM user signs in with MFA. If the IAM user assumes an IAM role, CloudTrail will also log `mfaAuthenticated: true` in the `sessionContext` attributes for actions performed using the assumed role. However, CloudTrail logging is separate from what IAM requires when API calls are made with the assumed role's credentials. For more information, see [CloudTrail userIdentity Element](https://docs.aws.amazon.com//awscloudtrail/latest/userguide/cloudtrail-event-reference-user-identity.html).