AWS Security ChangesHomeSearch

AWS pcs medium security documentation change

Service: pcs · 2025-08-19 · Security-related medium

File: pcs/latest/userguide/working-with_clusters_create.md

Summary

Removed documentation about specifying custom KMS keys for cluster controller encryption

Security assessment

The removal of guidance about using custom KMS keys for encryption could impact security configurations by omitting important data protection information. This change might lead to insecure default configurations if users are no longer instructed about encryption options.

Diff

diff --git a/pcs/latest/userguide/working-with_clusters_create.md b/pcs/latest/userguide/working-with_clusters_create.md
index 7f82f98b0..0dd561331 100644
--- a//pcs/latest/userguide/working-with_clusters_create.md
+++ b//pcs/latest/userguide/working-with_clusters_create.md
@@ -95,2 +94,0 @@ AWS PCS currently supports Slurm 24.11 and 24.05.
-     * Optionally, you can provide a custom KMS key to encrypt your controller’s data using `--kms-key-id `kms-key``. Replace ``kms-key`` with an existing KMS ARN, key ID, or alias. Note that the account used to create the cluster must have `kms:Decrypt` privileges on the custom KMS key.
-