AWS greengrass documentation change
Summary
Removed 'Step 1: Set up an AWS account' section including account signup instructions and security best practices for root user access
Security assessment
Removes standard account setup instructions and security recommendations about root user access. No evidence this change addresses a specific security vulnerability. General security best practice content was removed but not replaced with vulnerability-specific information.
Diff
diff --git a/greengrass/v2/developerguide/dev-tst-prereqs.md b/greengrass/v2/developerguide/dev-tst-prereqs.md index a9d0cc99c..097074a7c 100644 --- a//greengrass/v2/developerguide/dev-tst-prereqs.md +++ b//greengrass/v2/developerguide/dev-tst-prereqs.md @@ -70,26 +69,0 @@ Although most tests qualify for [AWS Free Tier](https://aws.amazon.com/free), yo -### Step 1: Set up an AWS account - -In this step, create and configure an AWS account. If you already have an AWS account, skip to Step 2: Configure permissions for IDT. - -If you do not have an AWS account, complete the following steps to create one. - -###### To sign up for an AWS account - - 1. Open [https://portal.aws.amazon.com/billing/signup](https://portal.aws.amazon.com/billing/signup). - - 2. Follow the online instructions. - -Part of the sign-up procedure involves receiving a phone call or text message and entering a verification code on the phone keypad. - -When you sign up for an AWS account, an _AWS account root user_ is created. The root user has access to all AWS services and resources in the account. As a security best practice, assign administrative access to a user, and use only the root user to perform [tasks that require root user access](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_root-user.html#root-user-tasks). - - - - -To create an administrator user, choose one of the following options. - -Choose one way to manage your administrator | To | By | You can also ----|---|---|--- -In IAM Identity Center (Recommended) | Use short-term credentials to access AWS.This aligns with the security best practices. For information about best practices, see [Security best practices in IAM](https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html#bp-users-federation-idp) in the _IAM User Guide_. | Following the instructions in [Getting started](https://docs.aws.amazon.com//singlesignon/latest/userguide/getting-started.html) in the _AWS IAM Identity Center User Guide_. | Configure programmatic access by [Configuring the AWS CLI to use AWS IAM Identity Center](https://docs.aws.amazon.com//cli/latest/userguide/cli-configure-sso.html) in the _AWS Command Line Interface User Guide_. -In IAM (Not recommended) | Use long-term credentials to access AWS. | Following the instructions in [ Create an IAM user for emergency access](https://docs.aws.amazon.com/IAM/latest/UserGuide/getting-started-emergency-iam-user.html) in the _IAM User Guide_. | Configure programmatic access by [Manage access keys for IAM users](https://docs.aws.amazon.com//IAM/latest/UserGuide/id_credentials_access-keys.html) in the _IAM User Guide_. -