AWS cloudhsm documentation change
Summary
Refined quorum token documentation to clarify Admin service token limitations and added reference to service types documentation
Security assessment
Provides clearer operational guidance for security feature (quorum tokens) without addressing specific vulnerabilities. Enhances documentation of security controls.
Diff
diff --git a/cloudhsm/latest/userguide/quorum-auth-chsm-cli.md b/cloudhsm/latest/userguide/quorum-auth-chsm-cli.md index 7548a2504..e86944a56 100644 --- a//cloudhsm/latest/userguide/quorum-auth-chsm-cli.md +++ b//cloudhsm/latest/userguide/quorum-auth-chsm-cli.md @@ -32 +32 @@ Key points about quorum authentication in AWS CloudHSM. - * Each HSM can contain one token per Admin service and multiple tokens per Crypto User service. + * Only one quorum token can exist per Admin service on each HSM at a time. You must complete or delete the active quorum token for a service before you can generate a new one for the same service. For more information, see [Supported services and types](./quorum-auth-chsm-cli-service-names.html).