AWS privateca documentation change
Summary
Updated multiple Amazon S3 documentation links from 'user-guide' to 'userguide' path
Security assessment
URL path corrections for existing security documentation without altering security content. No evidence of addressing vulnerabilities.
Diff
diff --git a/privateca/latest/userguide/PcaAuditReport.md b/privateca/latest/userguide/PcaAuditReport.md index 7e550af4d..41e10ff2a 100644 --- a//privateca/latest/userguide/PcaAuditReport.md +++ b//privateca/latest/userguide/PcaAuditReport.md @@ -64 +64 @@ AWS Private CA doesn't support the use of [Amazon S3 Object Lock](https://docs.a -To store your audit reports, you need to prepare an Amazon S3 bucket. For more information, see [How Do I Create an S3 bucket?](https://docs.aws.amazon.com/AmazonS3/latest/user-guide/create-bucket.html) +To store your audit reports, you need to prepare an Amazon S3 bucket. For more information, see [How Do I Create an S3 bucket?](https://docs.aws.amazon.com/AmazonS3/latest/userguide/create-bucket.html) @@ -66 +66 @@ To store your audit reports, you need to prepare an Amazon S3 bucket. For more i -Your S3 bucket must be secured by a permissions policy that allows AWS Private CA to access and write to the S3 bucket that you specify. Authorized users and service principals require `Put` permission to allow AWS Private CA to place objects in the bucket, and `Get` permission to retrieve them. We recommend that you apply the policy shown below, which restricts access to both an AWS account and the ARN of a private CA. Alternatively, you can use the [aws:SourceOrgID](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_condition-keys.html#condition-keys-sourceorgid) condition key to constrain access to a specific organization in AWS Organizations. For more information about bucket policies, see [Bucket policies for Amazon Simple Storage Service](https://docs.aws.amazon.com/AmazonS3/latest/user-guide/bucket-policies.html). +Your S3 bucket must be secured by a permissions policy that allows AWS Private CA to access and write to the S3 bucket that you specify. Authorized users and service principals require `Put` permission to allow AWS Private CA to place objects in the bucket, and `Get` permission to retrieve them. We recommend that you apply the policy shown below, which restricts access to both an AWS account and the ARN of a private CA. Alternatively, you can use the [aws:SourceOrgID](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_condition-keys.html#condition-keys-sourceorgid) condition key to constrain access to a specific organization in AWS Organizations. For more information about bucket policies, see [Bucket policies for Amazon Simple Storage Service](https://docs.aws.amazon.com/AmazonS3/latest/userguide/bucket-policies.html). @@ -113 +113 @@ If you choose **Yes** , AWS Private CA creates and attaches the default policy t -If you choose **No** , you must attach a policy to your bucket before you can generate an audit report. Use the policy pattern described in Prepare an Amazon S3 bucket for audit reports. For information about attaching a policy, see [Adding a bucket policy using the Amazon S3 console](https://docs.aws.amazon.com/AmazonS3/latest/user-guide/add-bucket-policy.html). +If you choose **No** , you must attach a policy to your bucket before you can generate an audit report. Use the policy pattern described in Prepare an Amazon S3 bucket for audit reports. For information about attaching a policy, see [Adding a bucket policy using the Amazon S3 console](https://docs.aws.amazon.com/AmazonS3/latest/userguide/add-bucket-policy.html). @@ -124 +124 @@ If you choose **No** , you must attach a policy to your bucket before you can ge - 1. If you do not already have an S3 bucket to use, [create one](https://docs.aws.amazon.com/AmazonS3/latest/user-guide/create-bucket.html). + 1. If you do not already have an S3 bucket to use, [create one](https://docs.aws.amazon.com/AmazonS3/latest/userguide/create-bucket.html). @@ -126 +126 @@ If you choose **No** , you must attach a policy to your bucket before you can ge - 2. Attach a policy to your bucket. Use the policy pattern described in Prepare an Amazon S3 bucket for audit reports. For information about attaching a policy, see [Adding a bucket policy using the Amazon S3 console](https://docs.aws.amazon.com/AmazonS3/latest/user-guide/add-bucket-policy.html) + 2. Attach a policy to your bucket. Use the policy pattern described in Prepare an Amazon S3 bucket for audit reports. For information about attaching a policy, see [Adding a bucket policy using the Amazon S3 console](https://docs.aws.amazon.com/AmazonS3/latest/userguide/add-bucket-policy.html) @@ -140 +140 @@ If you choose **No** , you must attach a policy to your bucket before you can ge -To retrieve an audit report for inspection, use the Amazon S3 console, API, CLI, or SDK. For more information, see [Downloading an object](https://docs.aws.amazon.com/AmazonS3/latest/user-guide/download-objects.html) in the _Amazon Simple Storage Service User Guide_. +To retrieve an audit report for inspection, use the Amazon S3 console, API, CLI, or SDK. For more information, see [Downloading an object](https://docs.aws.amazon.com/AmazonS3/latest/userguide/download-objects.html) in the _Amazon Simple Storage Service User Guide_.