Pivotal Cloud Foundry v1.9

Rotating Credentials in Garden Windows

This topic describes how to rotate the credentials for your Garden Windows release.

When operators rotate credentials for a Pivotal Cloud Foundry (PCF) deployment, this rotation does not automatically take effect in their Garden Windows release. To ensure that the Garden Windows release shares the new credentials of the PCF deployment, they must regenerate the manifest for the Garden Windows release and redeploy it.

Perform the following steps to rotate your Garden Windows credentials:

  1. Follow the steps in the Log into BOSH section of the Advanced Troubleshooting with the BOSH CLI topic to target and log in to your BOSH Director. The steps vary slightly depending on whether your PCF deployment uses internal authentication or an external user store.

  2. Download the manifest of your PCF deployment:

    $ bosh download manifest YOUR-PCF-DEPLOYMENT YOUR-PCF-MANIFEST.yml

    Note: You must know the name of your PCF deployment to download the manifest. To retrieve it, run bosh deployments to list your deployments and locate the name of your PCF deployment.

  3. Use the manifest generation script included in the BOSH Release for Windows on Pivotal Network to regenerate the manifest for Garden Windows. You must specify either vsphere or aws depending on your IaaS. The following example uses AWS:

    $ ./generate-manifest YOUR-PCF-MANIFEST.yml aws > garden-windows.yml
  4. Upload the Garden Windows release to BOSH:

    $ bosh upload release garden-windows-y-x.tgz 

  5. Redeploy Garden Windows:

    $ bosh -d garden-windows.yml deploy

Was this helpful?
What can we do to improve?
View the source for this page in GitHub