doc: add documentation for `ceph auth rotate`

author Patrick Donnelly <pdonnell@redhat.com>

Tue, 18 Jun 2024 18:07:31 +0000 (14:07 -0400)

committer Patrick Donnelly <pdonnell@redhat.com>

Fri, 21 Jun 2024 01:31:13 +0000 (21:31 -0400)
author Patrick Donnelly <pdonnell@redhat.com>
Tue, 18 Jun 2024 18:07:31 +0000 (14:07 -0400)
committer Patrick Donnelly <pdonnell@redhat.com>
Fri, 21 Jun 2024 01:31:13 +0000 (21:31 -0400)
diff --git a/doc/rados/operations/user-management.rst b/doc/rados/operations/user-management.rst

index 130c02002daf0f12dddfa7bd57ba9ee8811b45fe..1cfab8016c2c8fbc6df4a9ecf78654e9c45e4768 100644 (file)
--- a/doc/rados/operations/user-management.rst
+++ b/doc/rados/operations/user-management.rst
@@ -744,6 +744,20 @@ You may also :ref:`Modify user capabilities<modify-user-capabilities>` directly
  results to a keyring file, and then import the keyring into your main
  ``ceph.keyring`` file.
  
+
+Key rotation
+------------
+
+To rotate the secret for an entity, use:
+
+.. prompt:: bash #
+
+    ceph auth rotate <entity>
+
+This avoids the need to delete and recreate the entity when its key is
+compromised, lost, or scheduled for rotation.
+
+
  Command Line Usage
  ==================
author	Patrick Donnelly <pdonnell@redhat.com>
	Tue, 18 Jun 2024 18:07:31 +0000 (14:07 -0400)
committer	Patrick Donnelly <pdonnell@redhat.com>
	Fri, 21 Jun 2024 01:31:13 +0000 (21:31 -0400)