AWS Security ChangesHomeSearch

AWS res documentation change

Service: res · 2026-03-28 · Documentation medium

File: res/latest/ug/desktop-settings.md

Summary

Added new 'DCV Session Token Expiration' setting documentation with configuration options and screenshot.

Security assessment

This adds documentation for a new security feature that controls session token expiration, which is a security control for limiting session lifetime. However, there's no evidence this addresses a specific security vulnerability - it appears to be documentation for a new security feature being introduced.

Diff

diff --git a/res/latest/ug/desktop-settings.md b/res/latest/ug/desktop-settings.md
index c8e843c1e..733706a25 100644
--- a//res/latest/ug/desktop-settings.md
+++ b//res/latest/ug/desktop-settings.md
@@ -29,0 +30,16 @@ The default value for the allowed number of VDI sessions per user per project.
+**DCV Session Token Expiration**
+    
+
+The duration for which a DCV session token remains valid. When a token expires, users must re-download the DCV connection file from the web portal to continue accessing their virtual desktop session. The available options are:
+
+  * 1,440 minutes (1 day)
+
+  * 10,080 minutes (7 days)
+
+  * 43,200 minutes (30 days)
+
+
+
+
+![DCV session token expiration setting in Desktop Settings](/images/res/latest/ug/images/dcv-settings-form.png)
+