AWS Security ChangesHomeSearch

AWS res documentation change

Service: res · 2026-03-28 · Documentation low

File: res/archive/release-minus-1/ug/setup-custom-domain-after-install.md

Summary

Updated certificate management documentation to include certificate rotation and added details about automatic certificate retrieval from Secrets Manager by dcv-gateway instance

Security assessment

The change adds documentation about certificate rotation and automatic certificate updates from Secrets Manager, which are security best practices for maintaining secure TLS connections. However, there's no evidence this addresses a specific security vulnerability.

Diff

diff --git a/res/archive/release-minus-1/ug/setup-custom-domain-after-install.md b/res/archive/release-minus-1/ug/setup-custom-domain-after-install.md
index bb9df0fda..eb8f4afb2 100644
--- a//res/archive/release-minus-1/ug/setup-custom-domain-after-install.md
+++ b//res/archive/release-minus-1/ug/setup-custom-domain-after-install.md
@@ -44 +44 @@
-###### Add certs to the VDIs
+###### Add certs to the VDIs or rotate certs
@@ -86 +86 @@
-  5. Terminate the existing dcv-gateway instance: ``<env-name>`-vdc-gateway` and wait for a new one to spin up.
+  5. Terminate the existing dcv-gateway instance: ``<env-name>`-vdc-gateway` and wait for a new one to spin up. The dcv-gateway instance checks daily at 12:00 AM (midnight) UTC for changes to the certificate and private key values stored in Secrets Manager, and automatically retrieves and applies new values if updated.