AWS emr documentation change
Summary
Removed mention of 'deny conditions' in policy exclusions and corrected policy limitation (three policies → three resources).
Security assessment
Clarifies policy syntax and corrects a technical limitation description. No security implications; improves documentation accuracy for Ranger policies.
Diff
diff --git a/emr/latest/ManagementGuide/emr-ranger-emrfs.md b/emr/latest/ManagementGuide/emr-ranger-emrfs.md index 0d6480101..4c78b2fc1 100644 --- a//emr/latest/ManagementGuide/emr-ranger-emrfs.md +++ b//emr/latest/ManagementGuide/emr-ranger-emrfs.md @@ -105 +105 @@ To create a new policy in the **Create policy** page of the Service Manager, fil -You can specify users and groups to grant permissions. You can also specify exclusions for **allow** conditions and **deny** conditions. +You can specify users and groups to grant permissions. You can also specify exclusions for **allow** conditions. @@ -244 +244 @@ The following are current limitations of the EMRFS S3 plugin: - * Apache Ranger policies can have at most three policies. + * Apache Ranger policies can have at most three resources.