AWS Security ChangesHomeSearch

AWS solutions documentation change

Service: solutions · 2026-06-04 · Documentation medium

File: solutions/latest/spatial-data-management-on-aws/plan-your-deployment.md

Summary

Added 'Production Deployment Recommendations' section covering custom domain configuration and external identity provider integration

Security assessment

The new section documents security best practices: using custom domains and integrating external identity providers. This adds security documentation but doesn't address any specific vulnerability.

Diff

diff --git a/solutions/latest/spatial-data-management-on-aws/plan-your-deployment.md b/solutions/latest/spatial-data-management-on-aws/plan-your-deployment.md
index 8ef471047..815e2e807 100644
--- a//solutions/latest/spatial-data-management-on-aws/plan-your-deployment.md
+++ b//solutions/latest/spatial-data-management-on-aws/plan-your-deployment.md
@@ -4,0 +5,2 @@
+Production Deployment Recommendations
+
@@ -8,0 +11,12 @@ This section helps you plan your Spatial Data Management Application deployment
+## Production Deployment Recommendations
+
+For production deployments, consider the following best practices:
+
+**Custom Domain Configuration**
+
+Configure a custom domain for your deployment following your organization’s security best practices and policies. You can specify a custom domain during the initial deployment, or configure it after deployment is complete.
+
+**External Identity Provider Integration**
+
+Instead of managing users and groups directly in Amazon Cognito, integrate with your organization’s external identity provider. This centralizes user and group management in your existing identity system and enforces consistent security policies across your organization. For configuration guidance, see [Cognito User Pools Identity Federation](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-identity-federation.html) in the AWS documentation.
+