From 73136cbe07608c8d0696a5ba2059ebd65483bb85 Mon Sep 17 00:00:00 2001 From: Michael Montgomery Date: Wed, 15 Oct 2025 09:47:43 -0500 Subject: [PATCH] Update ECK documentation for rotating credentials. Signed-off-by: Michael Montgomery --- .../cluster-or-deployment-auth/managed-credentials-eck.md | 8 ++++++-- 1 file changed, 6 insertions(+), 2 deletions(-) diff --git a/deploy-manage/users-roles/cluster-or-deployment-auth/managed-credentials-eck.md b/deploy-manage/users-roles/cluster-or-deployment-auth/managed-credentials-eck.md index a43aa6b69d..09e0339ee4 100644 --- a/deploy-manage/users-roles/cluster-or-deployment-auth/managed-credentials-eck.md +++ b/deploy-manage/users-roles/cluster-or-deployment-auth/managed-credentials-eck.md @@ -66,13 +66,17 @@ If you are using the `elastic` user credentials in your own applications, they w To regenerate all auto-generated credentials in a namespace, run the following command: ```sh -kubectl delete secret -l eck.k8s.elastic.co/credentials=true +kubectl delete secret -l eck.k8s.elastic.co/credentials=true,common.k8s.elastic.co/type!=kibana ``` ::::{warning} This command regenerates auto-generated credentials of **all** {{stack}} applications in the namespace. :::: +:::{note} +Previous documentation suggested deleting all secrets with the label `eck.k8s.elastic.co/credentials=true`, which included the Kibana secret that contained encryption keys. Deletion of the Kibana config secret is not recommended. +::: + ## Creating custom users {{eck}} provides functionality to facilitate custom user creation through various authentication realms. You can create users using the native realm, file realm, or external authentication methods. @@ -99,4 +103,4 @@ For more information, refer to [External authentication](/deploy-manage/users-ro ECK facilitates file-based role management through Kubernetes secrets containing the roles specification. Alternatively, you can use the Role management API or the Role management UI in {{kib}}. -Refer to [Managing custom roles](/deploy-manage/users-roles/cluster-or-deployment-auth/defining-roles.md#managing-custom-roles) for details and ECK based examples. \ No newline at end of file +Refer to [Managing custom roles](/deploy-manage/users-roles/cluster-or-deployment-auth/defining-roles.md#managing-custom-roles) for details and ECK based examples.