Adds conceptual description to the Access isolation overview page #634
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
eedugon
reviewed
Mar 3, 2025
deploy-manage/tools/snapshot-and-restore/access-isolation-for-found-snapshots-repository.md
Outdated
Show resolved
Hide resolved
|
|
||
| # Access isolation for the found-snapshots repository [ec-snapshot-repository-migration] | ||
|
|
||
| In {{ech}}, [snapshots](/deploy-manage/tools/snapshot-and-restore.md) are stored in a repository. By default, deployments in the same region may have access to each other’s snapshots through the `found-snapshots` repository. |
There was a problem hiding this comment.
We need to clarify what's the default, because this sentence is contradictory with the note, which was the only content of the original doc (https://www.elastic.co/guide/en/cloud/current/ec-snapshot-repository-migration.html).
I believe the default now is isolation. In such case the introductory sentence might cause confusion.
Comment on lines
9
to
12
| In {{ech}}, [snapshots](/deploy-manage/tools/snapshot-and-restore.md) are stored in a repository. By default, deployments in the same region may have access to each other’s snapshots through the `found-snapshots` repository. | ||
|
|
||
| To enhance security, access isolation ensures that each deployment can only access its own snapshots. This prevents accidental or unauthorized access to backups from other deployments within the same organization. | ||
|
|
There was a problem hiding this comment.
Suggested change
| In {{ech}}, [snapshots](/deploy-manage/tools/snapshot-and-restore.md) are stored in a repository. By default, deployments in the same region may have access to each other’s snapshots through the `found-snapshots` repository. | |
| To enhance security, access isolation ensures that each deployment can only access its own snapshots. This prevents accidental or unauthorized access to backups from other deployments within the same organization. | |
| In {{ech}}, access isolation ensures that each deployment can only access its own snapshots, preventing accidental or unauthorized access to backups from other deployments within the same organization. | |
| Any newly created deployment has snapshot isolation set up by default. These guides are only relevant for deployments created before this default was introduced, where deployments within your organization in the same region may have access to each other's snapshots. | |
| If a deployment can access the snapshots of other deployments, a notification will appear in the deployments menu under Elasticsearch > Snapshots, prompting you to set up access isolation. |
…found-snapshots-repository.md Co-authored-by: Edu González de la Herrán <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR adds details to the 'Access isolation for the found-snapshots repository' overview page.
Related issue: https://github.com/elastic/docs-projects/issues/447