DOCSP-48102-agent-certificates (#2107) (#2122)

jason-price-mongodb · jason-price-mongodb · web-flow · commit d9f3c97ba359 · 2025-04-09T10:40:52.000-07:00
* DOCSP-48102-agent-certificates * DOCSP-48102-agent-certificates * DOCSP-48102-agent-certificates --------- Co-authored-by: jason-price-mongodb <jshfjghsdfgjsdjh@aolsdjfhkjsdhfkjsdf.com> (cherry picked from commit 35e7692)
diff --git a/source/includes/setting-k8sRsConf-spec.security.authentication.agents.clientCertificateSecretRef.name.rst b/source/includes/setting-k8sRsConf-spec.security.authentication.agents.clientCertificateSecretRef.name.rst
@@ -6,23 +6,15 @@
    Specifies the |k8s-secret| that contains the {+mdbagent+}\'s
    |tls| certificate. If omitted, defaults to ``agent-certs``.
    
-   This secret must contain the following keys, the 
-   values of which are |tls| certificates that can be validated by the 
-   server:
-   
-   - ``mms-automation-agent-pem``
-   - ``mms-backup-agent-pem``
-   - ``mms-monitoring-agent-pem``
-   
+   This secret must contain the ``mms-automation-agent-pem`` key. The
+   value of this key must be a |tls| certificate that can be validated
+   by the server.
+
    You must create this secret in the same namespace to which you
    deploy the |k8s-op-short|:
    
    .. code-block:: sh
    
-      kubectl create secret generic agent-certs \
-      --from-file=mms-automation-agent-pem=<automation-cert.pem> \
-      --from-file=mms-backup-agent-pem=<backup-cert.pem> \
-      --from-file=mms-monitoring-agent-pem=<monitoring-cert.pem> \
-      --namespace=<metadata.namespace>
-   
-
+     kubectl create secret generic agent-certs \
+     --from-file=mms-automation-agent-pem=<automation-cert.pem> \
+     --namespace=<metadata.namespace>
diff --git a/source/reference/k8s-operator-multi-cluster-specification.txt b/source/reference/k8s-operator-multi-cluster-specification.txt
@@ -790,13 +790,9 @@ Optional ``MongoDBMultiCluster`` Resource Settings
   Specifies the |k8s-secret| that contains the {+mdbagent+}\'s
   |tls| certificate.
  
-  This secret must contain the following keys, the 
-  values of which are |tls| certificates that can be validated by the 
-  server:
-  
-  - ``mms-automation-agent-pem``
-  - ``mms-backup-agent-pem``
-  - ``mms-monitoring-agent-pem``
+  This secret must contain the ``mms-automation-agent-pem`` key. The
+  value of this key must be a |tls| certificate that can be validated
+  by the server.
 
   You must create this secret in the same namespace to which you
   deploy the |k8s-op-short|:
@@ -805,9 +801,7 @@ Optional ``MongoDBMultiCluster`` Resource Settings
 
      kubectl create secret generic agent-certs \
      --from-file=mms-automation-agent-pem=<automation-cert.pem> \
-     --from-file=mms-backup-agent-pem=<backup-cert.pem> \
-     --from-file=mms-monitoring-agent-pem=<monitoring-cert.pem> \
-     --namespace=<metadata.namespace> 
+     --namespace=<metadata.namespace>
 
 .. _multi-spec-security-authentication-enabled:
 
