Confidential computing: Rework procedure

* Rewording
* Remove numberings and titles of steps
* Show full URLs of the files to download

Author: cwickert

xml/cha_administration.xml

@@ -815,76 +815,50 @@ LTSS registration succeeded</screen>
          </para>
        </sect3>
      </sect2>
-     <sect2 xml:id="practical-guide-deploying-attestable-images">
-       <title>Practical Guide: Deploying Attestable Images</title>
+     <sect2 xml:id="deploying-attestable-images">
+       <title>Deploying attestable images</title>
        <procedure>
         <step>
           <para>
-            Fetch and Register the Image
+            To start, you need an attestable image. &suse; provides a &sls; (&slsa;) image built
+            with &kiwi; for &awsa; with the necessary configurations for Nitro TPM and Enclaves.
+            You can download the image from the &obs; at
+            <link xlink:href="https://download.opensuse.org/repositories/Virtualization:/Appliances:/Images:/Testing_x86:/leap/images_sles/kiwi-test-image-aws-isolated-compute.x86_64.raw.xz"/>.
           </para>
+        </step>
+        <step>
           <para>
-           To start, you need an attestable image. For example, a &sls; (&slsa;) image built by
-           &kiwi; for &awsa; with the necessary configurations for Nitro TPM and Enclaves. You can
-           find such an image as follows:
-         </para>
-         <itemizedlist>
-            <listitem>
-              <formalpara>
-                <title>Image:</title>
-                <para>
-                  <link xlink:href="https://download.opensuse.org/repositories/Virtualization:/Appliances:/Images:/Testing_x86:/leap/images_sles/kiwi-test-image-aws-isolated-compute.x86_64.raw.xz">kiwi-test-image-aws-isolated-compute.x86_64.raw.xz</link>
-                </para>
-              </formalpara>
-            </listitem>
-            <listitem>
-              <formalpara>
-                <title>Upload</title>
-                <para>
-                  Use tools like <command>ec2uploadimg</command> as utilized in
-                  <link xlink:href="https://build.opensuse.org/projects/Virtualization:Appliances:Images:Testing_x86:leap/packages/test-image-aws-isolated-compute/files/ec2-upload?expand=1"><filename>ec2-upload</filename></link> or an alternative custom upload script.
-                </para>
-              </formalpara>
-            </listitem>
-          </itemizedlist>
+            Upload the attestable image to &ec2a; with <command>ec2uploadimg</command> or a custom
+            upload script. <command>ec2uploadimg</command> is available from the &obs; at
+            <link xlink:href="https://build.opensuse.org/projects/Virtualization:Appliances:Images:Testing_x86:leap/packages/test-image-aws-isolated-compute/files/ec2-upload"/>.
+          </para>
           <important>
             <para>
-              When uploading the AMI, you must enable TPM 2.0 support
-              and set the EFI boot mode to UEFI.
+              When uploading the AMI, you must enable TPM 2.0 support and set the EFI boot mode to UEFI.
             </para>
           </important>
         </step>
         <step>
           <para>
-            PCR Measurements
+           Before launching the instance, download the precomputed PCR measurements from
+           <link xlink:href="https://download.opensuse.org/repositories/Virtualization:/Appliances:/Images:/Testing_x86:/leap/images_sles/pcr_measurements.json"/>.
           </para>
           <para>
-           Before launching, download the precomputed PCR measurements:
-           <link xlink:href="https://download.opensuse.org/repositories/Virtualization:/Appliances:/Images:/Testing_x86:/leap/images_sles/pcr_measurements.json">pcr_measurements.json</link>
-          </para>
-          <para>
-            These values represent the expected NitroTPM PCR 4, 7, and 12 values based on
-            the UKI. They serve as the baseline for verifying the integrity of your
-            instance.
+            These values represent the expected NitroTPM PCR 4, 7, and 12 values based on the UKI.
+            They serve as the baseline for verifying the integrity of your instance.
           </para>
         </step>
         <step>
           <para>
-            3. Launching the Instance
-          </para>
-          <para>
-            Select an instance type that supports Nitro TPM and Enclaves (e.g.,
-            <literal>m5.xlarge</literal>). In the <emphasis role="strong">Advanced Details</emphasis>
+            Select an instance type that supports Nitro TPM and Enclaves such as
+            <literal>m5.xlarge</literal>. In the <emphasis role="strong">Advanced Details</emphasis>
             section of the EC2 launch wizard, ensure that <emphasis role="strong">Enclave support</emphasis>
             is explicitly enabled.
          </para>
         </step>
         <step>
           <para>
-            4. Verifying the TEE
-          </para>
-          <para>
-           Once logged into the instance, you can generate an attestation
-           document and check the PCRs:
+            To verify the TEE, log in to the instance and generate an attestation document and check the PCRs:
          </para>
          <programlisting language="bash" linenumbering="unnumbered">
 # Generate attestation document