AWS r53recovery documentation change
Summary
Updated IAM policy requirement to specify attachment to the plan's execution role
Security assessment
Clarifies IAM policy attachment target without evidence of fixing a security vulnerability. Reinforces security best practices but isn't response to a specific incident.
Diff
diff --git a/r53recovery/latest/dg/aurora-global-database-block.md b/r53recovery/latest/dg/aurora-global-database-block.md index bfe5768b4..a4f8fd50e 100644 --- a//r53recovery/latest/dg/aurora-global-database-block.md +++ b//r53recovery/latest/dg/aurora-global-database-block.md @@ -26 +26 @@ To configure an Aurora Global Database execution block, enter the following valu -Before you configure the execution block, make sure that you have the correct IAM policy in place. For more information, see [Aurora Global Database execution block sample policy](./security_iam_region_switch_aurora.html). +Before you configure the execution block, make sure that the plan's execution role has the correct IAM policy in place. For more information, see [Aurora Global Database execution block sample policy](./security_iam_region_switch_aurora.html).