AWS securityhub documentation change
Summary
Replaced manual tagging instructions with AWS Backup Guide references and added composite recovery point clarification.
Security assessment
Improves documentation accuracy for backup tagging without addressing vulnerabilities.
Diff
diff --git a/securityhub/latest/userguide/backup-controls.md b/securityhub/latest/userguide/backup-controls.md index 6a04bb743..f7fd27cde 100644 --- a//securityhub/latest/userguide/backup-controls.md +++ b//securityhub/latest/userguide/backup-controls.md @@ -67,15 +67 @@ Don’t add personally identifiable information (PII) or other confidential or s -###### To add tags to an AWS Backup recovery point - - 1. Open the AWS Backup console at [https://console.aws.amazon.com/backup](https://console.aws.amazon.com/backup). - - 2. In the navigation pane, choose **Backup plans**. - - 3. Select a backup plan from the list. - - 4. In the **Backup plan tags** section, choose **Manage tags**. - - 5. Enter the key and value for the tag. Choose **Add new tag** for additional key-value pairs. - - 6. When you are finished adding tags, choose **Save**. - - +To copy tags from source resources at backup creation time, see [Copy tags onto backups](https://docs.aws.amazon.com/aws-backup/latest/devguide/tags-on-backups.html) in _AWS Backup Developer Guide_. @@ -82,0 +69 @@ Don’t add personally identifiable information (PII) or other confidential or s +Tags are not copied at creation time for parent/composite recovery points. To add tags on existing recovery points including parent/composite recovery points, see [Add or remove tags on existing recovery points](https://docs.aws.amazon.com/aws-backup/latest/devguide/tagging-recovery-points.html) in _AWS Backup Developer Guide_.