TiffanyLiIBM
commented
2 years ago @Timo-1 Thanks for the comment. I've updated to the doc to include the AT tracker provisioning as a next step. Please let me know whether it is sufficient:
Closed Timo-1 closed 1 year ago
TiffanyLiIBM
commented
2 years ago @Timo-1 Thanks for the comment. I've updated to the doc to include the AT tracker provisioning as a next step. Please let me know whether it is sufficient:
TiffanyLiIBM
commented
2 years ago @Timo-1 I would like to close this issue if there is no more comments. Thanks!
Timo-1
commented
2 years ago Thank you @TiffanyLiIBM. Can you emphasize the recommendation to setup AT in a stronger way ?
The current paragraph is very neutral.
E.g. add a a sentence which illustrates the advantages of AT like :
As a security officer, auditor, or manager, you can use the IBM Cloud® Activity Tracker service to monitor the status of your instance and how administrators, users and applications interact with IBM Cloud® Hyper Protect Crypto Services. To enable IBM Cloud Acitivty Tracker for your ...
TiffanyLiIBM
commented
2 years ago Hi @Timo-1, Many thanks for the suggestion. I've adjusted the doc accordingly:
Timo-1
commented
2 years ago Thanks @TiffanyLiIBM . Looks good !
TiffanyLiIBM
commented
1 year ago Change pushed to Prod. Closing... https://cloud.ibm.com/docs/hs-crypto?topic=hs-crypto-provision&interface=ui
Add a strong and easy to read recommendation - on this page https://cloud.ibm.com/docs/hs-crypto?topic=hs-crypto-provision&interface=ui - to enable IBM Cloud Activity Tracker for the Hyper Protect Crypto Services instance.
See following sentence here: https://cloud.ibm.com/docs/hs-crypto?topic=hs-crypto-at-events "To enable IBM Cloud Activity Tracker for your Hyper Protect Crypto Services instance, you need to provision an instance of the IBM Cloud Activity Tracker service in the same region where your Hyper Protect Crypto Services instance is located."
Goal: Avoid that customer does a key ceremony which is not audited in his AT.