DOC-5210 Added new PUT /v1/cluster/certificates examples for updating certs in RS 7.22.2 and later

rrelledge · rrelledge · commit a7eccaa873f6 · 2025-09-12T15:05:16.000-05:00
diff --git a/content/operate/rs/security/certificates/certificate-based-authentication.md b/content/operate/rs/security/certificates/certificate-based-authentication.md
@@ -26,7 +26,23 @@ To set up certificate-based authentication:
 
 ### Add mtls_trusted_ca certificate {#add-cert}
 
-Add a trusted CA certificate `mtls_trusted_ca` to the cluster using an [update cluster certificate]({{<relref "/operate/rs/references/rest-api/requests/cluster/certificates#put-cluster-update_cert">}}) request:
+To add a trusted CA certificate `mtls_trusted_ca` to the cluster, use an [update cluster certificates]({{<relref "/operate/rs/references/rest-api/requests/cluster/certificates">}}) request.
+
+For Redis Enterprise Software versions 7.22.2 and later, use:
+
+```sh
+PUT /v1/cluster/certificates
+{
+  "certificates": [
+    {
+      "name": "mtls_trusted_ca",
+      "certificate": "<content of certificate PEM file>"
+    }
+  ]
+}
+```
+
+For Redis Enterprise Software versions 7.22.0 and earlier, use:
 
 ```sh
 PUT /v1/cluster/update_cert
diff --git a/content/operate/rs/security/certificates/updating-certificates.md b/content/operate/rs/security/certificates/updating-certificates.md
@@ -18,15 +18,10 @@ When you update the certificates, the new certificate replaces the same certific
 
 You can use the [`rladmin`]({{< relref "/operate/rs/references/cli-utilities/rladmin" >}}) command-line interface (CLI) or the [REST API]({{< relref "/operate/rs/references/rest-api" >}}) to update certificates. The Cluster Manager UI lets you update proxy, syncer, and internode encryption certificates on the **Cluster > Security > Certificates** screen.
 
-The new certificates are used the next time the clients connect to the database.
-
-When you upgrade Redis Enterprise Software, the upgrade process copies the certificates that are on the first upgraded node to all of the nodes in the cluster.
-
-{{<note>}}
-Don't manually overwrite the files located in `/etc/opt/redislabs`. Instead, upload new certificates to a temporary location on one of the cluster nodes, such as the `/tmp` directory.
-{{</note>}}
-
-### Use the Cluster Manager UI
+{{< multitabs id="get-module-versions" 
+tab1="Cluster Manager UI"
+tab2="rladmin"
+tab3="REST API" >}}
 
 To replace proxy or syncer certificates using the Cluster Manager UI:
 
@@ -37,19 +32,19 @@ To replace proxy or syncer certificates using the Cluster Manager UI:
     - For the proxy certificate, expand **Server authentication**.
     - For the syncer certificate, expand **Replica Of and Active-Active authentication**.
 
-    {{<image filename="images/rs/screenshots/cluster/security-expand-proxy-cert.png"  alt="Expanded proxy certificate for server authentication.">}}
+    <img src="/images/rs/screenshots/cluster/security-expand-proxy-cert.png" alt="Expanded proxy certificate for server authentication.">
 
 1. Click **Replace Certificate** to open the dialog.
 
-    {{<image filename="images/rs/screenshots/cluster/security-replace-proxy-cert.png"  alt="Replace proxy certificate dialog.">}}
+    <img src="/images/rs/screenshots/cluster/security-replace-proxy-cert.png" alt="Replace proxy certificate dialog.">
 
 1. Upload the key file.
 
 1. Upload the new certificate.
 
 1. Click **Save**.
 
-### Use the CLI
+-tab-sep-
 
 To replace certificates with the `rladmin` CLI, run the [`cluster certificate set`]({{< relref "/operate/rs/references/cli-utilities/rladmin/cluster/certificate" >}}) command:
 
@@ -69,12 +64,29 @@ For example, to replace the Cluster Manager UI (`cm`) certificate with the priva
 rladmin cluster certificate set cm certificate_file cluster.pem key_file key.pem
 ```
 
-### Use the REST API
+-tab-sep-
+
+To replace a certificate using the REST API, use an [update cluster certificates]({{<relref "/operate/rs/references/rest-api/requests/cluster/certificates">}}) request.
+
+For Redis Enterprise Software versions 7.22.2 and later, use:
+
+```sh
+PUT https://<host>:<port>/v1/cluster/certificates
+{
+  "certificates": [
+    {
+      "name": "<cert_name>",
+      "certificate": "<cert>",
+      "key": "<key>"
+    }
+  ]
+}
+```
 
-To replace a certificate using the REST API, use [`PUT /v1/cluster/update_cert`]({{< relref "/operate/rs/references/rest-api/requests/cluster/certificates#put-cluster-update_cert" >}}):
+For Redis Enterprise Software versions 7.22.0 and earlier, use:
 
 ```sh
-PUT https://[host][:port]/v1/cluster/update_cert
+PUT https://<host>:<port>/v1/cluster/update_cert
     '{ "name": "<cert_name>", "key": "<key>", "certificate": "<cert>" }'
 ```
 
@@ -91,6 +103,16 @@ Replace the following variables with your own values:
 
 - `<cert>` - The contents of the \*\_cert.pem file
 
+{{< /multitabs >}}
+
+The new certificates are used the next time the clients connect to the database.
+
+When you upgrade Redis Enterprise Software, the upgrade process copies the certificates that are on the first upgraded node to all of the nodes in the cluster.
+
+{{<note>}}
+Don't manually overwrite the files located in `/etc/opt/redislabs`. Instead, upload new certificates to a temporary location on one of the cluster nodes, such as the `/tmp` directory.
+{{</note>}}
+
 ## Replica Of database certificates
 
 This section describes how to update certificates for Replica Of databases.
