Rotating Credentials in Garden Windows
This topic describes how to rotate the credentials for your Garden Windows release.
When operators rotate credentials for a Pivotal Cloud Foundry (PCF) deployment, this rotation does not automatically take effect in their Garden Windows release. To ensure that the Garden Windows release shares the new credentials of the PCF deployment, they must regenerate the manifest for the Garden Windows release and redeploy it.
Perform the following steps to rotate your Garden Windows credentials:
Follow the steps in the Log into BOSH section of the Advanced Troubleshooting with the BOSH CLI topic to target and log in to your BOSH Director. The steps vary slightly depending on whether your PCF deployment uses internal authentication or an external user store.
Download the manifest of your PCF deployment:
$ bosh download manifest YOUR-PCF-DEPLOYMENT YOUR-PCF-MANIFEST.yml
Note: You must know the name of your PCF deployment to download the manifest. To retrieve it, run
bosh deploymentsto list your deployments and locate the name of your PCF deployment.
Use the manifest generation script included in the BOSH Release for Windows on Pivotal Network to regenerate the manifest for Garden Windows. You must specify either
awsdepending on your IaaS. The following example uses AWS:
$ ./generate-manifest YOUR-PCF-MANIFEST.yml aws > garden-windows.yml
Upload the Garden Windows release to BOSH:
$ bosh upload release garden-windows-y-x.tgz
Redeploy Garden Windows:
$ bosh -d garden-windows.yml deploy