mirror of
https://github.com/rancher/rancher-docs.git
synced 2026-05-06 05:03:27 +00:00
Billy Tat
5aff8986c8
Check shows link as dead, but page redirects. The target site uses Docusaurus which shows a 404 initially then redirects due to the trailing slash used.
48 lines
1.3 KiB
Markdown
48 lines
1.3 KiB
Markdown
---
|
|
title: Encryption Key Rotation
|
|
---
|
|
|
|
### RKE1 Encryption Key Rotation
|
|
|
|
1. Enable encryption key rotation with either of the following two options:
|
|
|
|
- Select the `Enabled` radio button in the Rancher UI under **Cluster Options > Advanced Options > Secrets Encryption**:
|
|
|
|
|
|
|
|
- OR, apply the following YAML:
|
|
|
|
```yaml
|
|
rancher_kubernetes_engine_config:
|
|
services:
|
|
kube_api:
|
|
secrets_encryption_config:
|
|
enabled: true
|
|
```
|
|
|
|
2. Rotate keys in the Rancher UI:
|
|
|
|
2.1. Click **☰ > Cluster Management**.
|
|
|
|
2.2. Select **⋮ > Rotate Encryption Keys** on the far right of the screen next to your chosen cluster:
|
|
|
|
|
|
|
|
|
|
|
|
### RKE2 Encryption Key Rotation
|
|
|
|
_**New in v2.6.7**_
|
|
|
|
>**Important:** Encryption key rotation is enabled by default and cannot be disabled.
|
|
|
|
To rotate keys in the Rancher UI:
|
|
|
|
1. Click **☰ > Cluster Management**.
|
|
|
|
1. Select **⋮ > Rotate Encryption Keys** on the far right of the screen next to your chosen cluster:
|
|
|
|
|
|
|
|
|
|
>**Note:** For more information on RKE2 secrets encryption config, please see the [RKE2 docs](https://docs.rke2.io/security/secrets_encryption). |