AppsCode
  • KubeDB

    Run Production-Grade Databases on Kubernetes

    KubeStash New

    Backup and Recovery Solution for Kubernetes

    Stash

    Backup and Recovery Solution for Kubernetes

    KubeVault

    Run Production-Grade Vault on Kubernetes

    Voyager

    Secure Ingress Controller for Kubernetes

    ConfigSyncer

    Kubernetes Configuration Syncer

    Guard

    Kubernetes Authentication WebHook Server

    KubeDB

    KubeDB simplifies Provisioning, Upgrading, Scaling, Volume Expansion, Monitor, Backup, Restore for various Databases in Kubernetes on any Public & Private Cloud

    • check-boxLower administrative burden
    • check-boxNative Kubernetes Support
    • check-boxPerformance
    • check-boxAvailability and durability
    • check-boxManageability
    • check-boxCost-effectiveness
    • check-boxSecurity
    kubestash

    A complete Kubernetes native disaster recovery solution for backup and restore your volumes and databases in Kubernetes on any public and private clouds.

    • check-boxDeclarative API
    • check-boxBackup Kubernetes Volumes
    • check-boxBackup Database
    • check-boxMultiple Storage Support
    • check-boxDeduplication
    • check-boxData Encryption
    • check-boxVolume Snapshot
    • check-boxPolicy Based Backup
    Stash

    A complete Kubernetes native disaster recovery solution for backup and restore your volumes and databases in Kubernetes on any public and private clouds.

    • check-boxDeclarative API
    • check-boxBackup Kubernetes Volumes
    • check-boxBackup Database
    • check-boxMultiple Storage Support
    • check-boxDeduplication
    • check-boxData Encryption
    • check-boxVolume Snapshot
    • check-boxPolicy Based Backup
    KubeVault

    KubeVault is a Git-Ops ready, production-grade solution for deploying and configuring Hashicorp's Vault on Kubernetes.

    • check-boxVault Kubernetes Deployment
    • check-boxAuto Initialization & Unsealing
    • check-boxVault Backup & Restore
    • check-boxConsume KubeVault Secrets with CSI
    • check-boxManage DB Users Privileges
    • check-boxStorage Backend
    • check-boxAuthentication Method
    • check-boxDatabase Secret Engine
    Voyager

    Secure Ingress Controller for Kubernetes

    • check-boxHTTP & TCP
    • check-boxSSL
    • check-boxPlatform support
    • check-boxHAProxy
    • check-boxPrometheus
    • check-boxLet's Encrypt
    configsyncer

    Kubernetes Configuration Syncer

    • check-boxConfiguration Syncer
    Guard

    Kubernetes Authentication WebHook Server

    • check-boxIdentity Providers
    • check-boxCLI
    • check-boxRBAC
  • RESOURCES
  • Webinar New
CONTACT SALES
KubeDB
github-icon twitterx-icon
TRY NOW FREE
You are looking at the documentation of a prior release. To read the documentation of the latest release, please visit here.

New to KubeDB? Please start here.

Rotate Authentication of PerconaXtraDB

This guide will give an overview on how KubeDB Ops-manager operator Rotate Authentication configuration.

Before You Begin

How Rotate PerconaXtraDB Authentication Configuration Process Works

The authentication rotation process for PerconaXtraDB using KubeDB involves the following steps:

  1. A user first creates a PerconaXtraDB Custom Resource Object (CRO).

  2. The KubeDB Provisioner operator continuously watches for PerconaXtraDB CROs.

  3. When the operator detects a PerconaXtraDB CR, it provisions the required PetSets, along with related resources such as secrets, services, and other dependencies.

  4. To initiate authentication rotation, the user creates a PerconaXtraDBOpsRequest CR with the desired configuration.

  5. The KubeDB Ops-manager operator watches for PerconaXtraDBOpsRequest CRs.

  6. Upon detecting a PerconaXtraDBOpsRequest, the operator pauses the referenced PerconaXtraDB object, ensuring that the Provisioner operator does not perform any operations during the authentication rotation process.

  7. The Ops-manager operator then updates the necessary configuration (such as credentials) based on the provided PerconaXtraDBOpsRequest specification.

  8. After applying the updated configuration, the operator restarts all PerconaXtraDB Pods so they come up with the new authentication environment variables and settings.

  9. Once the authentication rotation is completed successfully, the operator resumes the PerconaXtraDB object, allowing the Provisioner operator to continue its usual operations.

In the next section, we will walk you through a step-by-step guide to rotating PerconaXtraDB authentication using the PerconaXtraDBOpsRequest CRD.

What's on this Page

Search
Improve This Page