AWS cli documentation change
Summary
Added --encryption-key-arn parameter and encryption documentation
Security assessment
Introduces documentation for customer-managed KMS key encryption of backup vaults, enhancing security controls but not addressing a specific vulnerability.
Diff
diff --git a/cli/latest/reference/backup/create-logically-air-gapped-backup-vault.md b/cli/latest/reference/backup/create-logically-air-gapped-backup-vault.md index 0e8cefcdc..29f7f31af 100644 --- a//cli/latest/reference/backup/create-logically-air-gapped-backup-vault.md +++ b//cli/latest/reference/backup/create-logically-air-gapped-backup-vault.md @@ -15 +15 @@ - * [AWS CLI 2.31.28 Command Reference](../../index.html) » + * [AWS CLI 2.31.31 Command Reference](../../index.html) » @@ -77,0 +78 @@ See also: [AWS API Documentation](https://docs.aws.amazon.com/goto/WebAPI/backup + [--encryption-key-arn <value>] @@ -148,0 +150,4 @@ JSON Syntax: +`--encryption-key-arn` (string) + +> The ARN of the customer-managed KMS key to use for encrypting the logically air-gapped backup vault. If not specified, the vault will be encrypted with an Amazon Web Services-owned key managed by Amazon Web Services Backup. + @@ -290 +295 @@ VaultState -> (string) - * [AWS CLI 2.31.28 Command Reference](../../index.html) » + * [AWS CLI 2.31.31 Command Reference](../../index.html) »