Merge pull request #510 from alphagov/ris-rotate-bosh-creds-fixes

Rotating BOSH creds: fix suggested action tricking pipeline into rotating certs
alphagov · Aug 22, 2023 · c7295e3 · c7295e3
2 parents 87f8c5c + 59cdb0d
commit c7295e3
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/source/team/rotating_credentials.html.md b/source/team/rotating_credentials.html.md
@@ -63,7 +63,7 @@ tab:
 To rotate credentials and certificates:
 
 1. Pause the `create-bosh-concourse` pipeline, and make sure it is not running.
-1. Run the `check-certificates` job to see if any certificates need rotation. It will fail if any certificates have expired. If the task succeeds because no certificates have expired and you need to force it to fail because you are testing in a dev environment, add a `-min-remaining-days 400` flag into the `check-certificates.rb` call in the `check-certificates` Concourse task.
+1. Run the `check-certificates` job to see if any certificates need rotation. It will fail if any certificates have expired. If the task succeeds because no certificates have expired and you need to force it to fail because you are testing in a dev environment, add a `--min-remaining-days 400` flag into the `check-certificates.rb` call in the `check-certificates` and `drop-bosh-leaf-certs-for-rotation` Concourse tasks.
 1. Run the relevant rotation Concourse job (`drop-bosh-credentials-for-rotation` and/or `drop-bosh-leaf-certs-for-rotation`).
 1. Unpause the `create-bosh-concourse` pipeline.
 1. Trigger the `create-bosh-concourse` pipeline and allow it to run all the way through.