AWS AWSCloudFormation documentation change
Summary
Expanded SASL authentication documentation with encryption requirements
Security assessment
Provides security configuration details for SASL authentication but no vulnerability fix
Diff
diff --git a/AWSCloudFormation/latest/UserGuide/aws-properties-msk-serverlesscluster-sasl.md b/AWSCloudFormation/latest/UserGuide/aws-properties-msk-serverlesscluster-sasl.md index 57d32dc74..514ac9e1b 100644 --- a//AWSCloudFormation/latest/UserGuide/aws-properties-msk-serverlesscluster-sasl.md +++ b//AWSCloudFormation/latest/UserGuide/aws-properties-msk-serverlesscluster-sasl.md @@ -7 +7 @@ SyntaxProperties -The `Sasl` property type specifies Property description not available. for an [AWS::MSK::ServerlessCluster](./aws-resource-msk-serverlesscluster.html). +Details for client authentication using SASL. To turn on SASL, you must also turn on `EncryptionInTransit` by setting `inCluster` to true. You must set `clientBroker` to either `TLS` or `TLS_PLAINTEXT`. If you choose `TLS_PLAINTEXT`, then you must also set `unauthenticated` to true. @@ -33 +33 @@ To declare this entity in your AWS CloudFormation template, use the following sy -Property description not available. +Details for ClientAuthentication using IAM.