AWS Security ChangesHomeSearch

AWS cloudhsm documentation change

Service: cloudhsm · 2026-05-07 · Documentation low

File: cloudhsm/latest/userguide/quorum-auth-chsm-cli.md

Summary

Refined quorum token documentation to clarify Admin service token limitations and added reference to service types documentation

Security assessment

Provides clearer operational guidance for security feature (quorum tokens) without addressing specific vulnerabilities. Enhances documentation of security controls.

Diff

diff --git a/cloudhsm/latest/userguide/quorum-auth-chsm-cli.md b/cloudhsm/latest/userguide/quorum-auth-chsm-cli.md
index 7548a2504..e86944a56 100644
--- a//cloudhsm/latest/userguide/quorum-auth-chsm-cli.md
+++ b//cloudhsm/latest/userguide/quorum-auth-chsm-cli.md
@@ -32 +32 @@ Key points about quorum authentication in AWS CloudHSM.
-  * Each HSM can contain one token per Admin service and multiple tokens per Crypto User service.
+  * Only one quorum token can exist per Admin service on each HSM at a time. You must complete or delete the active quorum token for a service before you can generate a new one for the same service. For more information, see [Supported services and types](./quorum-auth-chsm-cli-service-names.html).