AWS AWSEC2 documentation change
Summary
Corrected AWS CLI documentation URL for KMS create-grant command
Security assessment
The change updates a URL but does not alter the security-related guidance about KMS grants. The security implications of the documented process remain unchanged.
Diff
diff --git a/AWSEC2/latest/UserGuide/ec2-fleet-prerequisites.md b/AWSEC2/latest/UserGuide/ec2-fleet-prerequisites.md index e15c51427..c139d166a 100644 --- a//AWSEC2/latest/UserGuide/ec2-fleet-prerequisites.md +++ b//AWSEC2/latest/UserGuide/ec2-fleet-prerequisites.md @@ -94 +94 @@ When providing permissions, grants are an alternative to key policies. For more - * Use the [create-grant](https://awscli.amazonaws.com/v2/documentation/api/latest/reference/kms/create-grant.html) command to add a grant to the customer managed key and to specify the principal (the **AWSServiceRoleForEC2Fleet** service-linked role) that is given permission to perform the operations that the grant permits. The customer managed key is specified by the `key-id` parameter and the ARN of the customer managed key. The principal is specified by the `grantee-principal` parameter and the ARN of the **AWSServiceRoleForEC2Fleet** service-linked role. + * Use the [create-grant](https://docs.aws.amazon.com/cli/latest/reference/kms/create-grant.html) command to add a grant to the customer managed key and to specify the principal (the **AWSServiceRoleForEC2Fleet** service-linked role) that is given permission to perform the operations that the grant permits. The customer managed key is specified by the `key-id` parameter and the ARN of the customer managed key. The principal is specified by the `grantee-principal` parameter and the ARN of the **AWSServiceRoleForEC2Fleet** service-linked role.