(DOCSP-11103)(DOCSP-11104): enterprise kubernetes doc improvements (#318)

* (DOCSP-11103): checkpoint

* (DOCSP-11103), (DOCSP-11104): k8s doc enhancements

* (DOCSP-11103), (DOCSP-11104): small structural tweak

* (DOCSP-11103): tech review feedback

* (DOCSP-11103),(DOCS-13759): tech review feedback and fix typo in example

Author: jwilliams-mongo

source/includes/prereqs/secure-om-resource.rst

@@ -1,7 +1,5 @@
 - :doc:`Install the Kubernetes Operator </tutorial/install-k8s-operator>`.
 
-- :doc:`Create Credentials for the Kubernetes Operator </tutorial/create-operator-credentials>`.
-
 - :ref:`Deploy the Ops Manager application <deploy-om-container>` that
   you want to secure.
 
@@ -21,7 +19,7 @@
 
          .. code-block:: sh
 
-            <opsmgr-name>db<index>.<opsmgr-name>-db-svc.<namespace>.svc.cluster.local
+            <opsmgr-name>-db-<index>.<opsmgr-name>-db-svc.<namespace>.svc.cluster.local
 
      * - Key Usages
        - MongoDB requires the |tls| certs to include two specific

source/includes/steps-deploy-k8s-opsmgr-http.yaml

@@ -582,7 +582,7 @@ content: |
 
      kubectl get om -o yaml -w
 
-  When the |onprem| is running, the command returns the following
+  When |onprem| is running, the command returns the following
   output under the ``status`` field:
 
   .. code-block:: yaml

source/includes/steps-deploy-k8s-opsmgr-https.yaml

@@ -674,7 +674,7 @@ content: |
 
      kubectl get om -o yaml -w
 
-  When the |onprem| is running, the command returns the following
+  When |onprem| is running, the command returns the following
   output under the ``status`` field:
 
   .. code-block:: yaml

source/includes/steps-deploy-k8s-opsmgr-local-mode.yaml

@@ -96,6 +96,15 @@ content: |
   The installers that you download depend on the environment to which 
   you deployed the operator:
 
+  .. note::
+
+     The examples below provide you with a link to quickly download the
+     specified versions of MongoDB Community edition and the MongoDB
+     Database tools.
+
+     To download MongoDB Enterprise Edition, or any other version of 
+     MongoDB Community Edition, visit the :dl:`MongoDB Download Center`.
+
   .. tabs::
 
      .. tab:: Vanilla Kubernetes

source/includes/steps-secure-om-appdb.yaml

@@ -1,29 +1,86 @@
 ---
-ref: verify-om-appdb-tls-certs
+ref: configure-kubectl-standalone
 stepnum: 1
+inherit:
+  file: steps-configure-kubectl-namespace.yaml
+  ref: configure-kubectl-namespace
+---
+ref: verify-om-appdb-tls-certs
+stepnum: 2
 level: 4
 inherit:
   file: steps-source-deploy-om-resource.yaml
   ref: verify-om-appdb-tls-certs
----
+--- 
 ref: create-om-appdb-secret
-stepnum: 2
+stepnum: 3
 level: 4
 inherit:
   file: steps-source-deploy-om-resource.yaml
   ref: create-om-appdb-secret
 ---
 ref: create-om-appdb-configmap
-stepnum: 3
+stepnum: 4
 level: 4
 inherit:
   file: steps-source-deploy-om-resource.yaml
   ref: create-om-appdb-configmap
 ---
 ref: create-om-appdb-set-secret
-stepnum: 4
+stepnum: 5
 level: 4
 inherit:
   file: steps-source-deploy-om-resource.yaml
   ref: create-om-appdb-set-secret
+---
+title: "Apply changes to your |onprem| deployment."
+stepnum: 6
+level: 4
+ref: apply-changes-om-k8s
+content: |
+
+  Invoke the following ``kubectl`` command on the filename of the
+  |onprem| resource definition:
+
+  .. code-block:: sh
+
+     kubectl apply -f <opsmgr-resource>.yaml
+
+---
+title: "Track the status of your |onprem| instance."
+stepnum: 7
+level: 4
+ref: track-k8s-instance
+content: |
+
+  To check the status of your |onprem| resource, invoke the following
+  command:
+
+  .. code-block:: sh
+
+     kubectl get om -o yaml -w
+
+  When |onprem| is running, the command returns the following
+  output under the ``status`` field:
+
+  .. code-block:: yaml
+     :copyable: false
+
+     status:
+       applicationDatabase:
+         lastTransition: "2019-12-06T17:46:15Z"
+         members: 3
+         phase: Running
+         type: ReplicaSet
+         version: 4.2.2-ent
+       opsManager:
+         lastTransition: "2019-12-06T17:46:32Z"
+         phase: Running
+         replicas: 1
+         url: https://om-appdb-tls-enabled-svc.dev.svc.cluster.local:8443
+         version: 4.2.6
+
+  See :doc:`/reference/troubleshooting` for information about the
+  resource deployment statuses.
+
 ...

source/includes/steps-source-deploy-om-resource.yaml

@@ -7,7 +7,7 @@ content: |
 
   Verify that each member of the Replica Set has one |tls| certificate named with the following format:
 
-  ``<resource-name>db<index>-pem``
+  ``<resource-name>-db-<index>-pem``
 
   Where ``<index>`` is a 0-based index number to the total amount of
   members minus one. (``0`` to ``n-1``)
@@ -24,9 +24,9 @@ content: |
   .. code-block:: sh
 
      kubectl create secret generic appdb-certs \
-             --from-file=om-appdb-0-pem \
-             --from-file=om-appdb-1-pem \
-             --from-file=om-appdb-2-pem
+             --from-file=om-appdb-tls-enabled-db-0-pem \
+             --from-file=om-appdb-tls-enabled-db-1-pem \
+             --from-file=om-appdb-tls-enabled-db-2-pem
 
   ``kubectl`` creates one Secret containing the three certificates.
 
@@ -67,11 +67,16 @@ ref: create-om-appdb-set-secret
 title: "Specify the Secret with certs to the |onprem| yaml definition."
 content: |
 
-   .. literalinclude:: /includes/code-examples/yaml-files/example-opsmgr.yaml
-      :language: yaml
-      :linenos:
-      :copyable: false
-      :start-after: START-secure-appdb-full
-      :end-before: END-secure-appdb-full
+  .. literalinclude:: /includes/code-examples/yaml-files/example-opsmgr.yaml
+     :language: yaml
+     :linenos:
+     :copyable: false
+     :start-after: START-secure-appdb-full
+     :end-before: END-secure-appdb-full
 
+  .. note::
+
+     The |k8s-op-short| mounts the |certauth| you add using the
+     :opsmgrkube:`spec.applicationDatabase.security.tls.ca` setting to
+     both the |onprem| and the Application Database pods.
 ...

source/tutorial/modify-resource-image.txt

@@ -66,7 +66,7 @@ To create a volume mount for a MongoDB database resource:
            podTemplate:
              spec:
                containers:
-               - name: mongod-enterprise-database
+               - name: mongodb-enterprise-database
                  volumeMounts:
                  - mountPath: </new/mount/path>
                    name: survives-restart

source/tutorial/plan-om-resource.txt

@@ -97,6 +97,25 @@ database or :term:`sharded cluster`. If you have concerns about
 performance or size requirements for the Application Database, contact
 `MongoDB Support <https://support.mongodb.com/welcome>`__.
 
+Monitoring
+++++++++++
+
+The |k8s-op-short| automatically configures |onprem| to monitor the
+Application Database that backs the |application|. The |k8s-op-short|
+creates a project named ``<ops-manager-deployment-name>-db`` for you to
+monitor the Application Database deployment.
+
+|onprem| monitors the Application Database deployment, but |onprem| does
+not manage it. You cannot change the Application Database's
+configuration in the |application|.
+
+.. important::
+
+    The |onprem| UI might display warnings in the
+    ``<ops-manager-deployment-name>-db`` project stating that the
+    agents for the Application Database are out of date. You can safely
+    ignore these warnings.
+
 .. _app-db-auth:
 
 Authentication
@@ -390,6 +409,12 @@ Prerequisites
    Use these credentials to log in to |onprem| for the first time. Once
    you deploy |onprem|, change the password or remove this secret.
 
+   .. note::
+
+      The admin user's password must adhere to the |onprem|
+      :opsmgr:`password complexity requirements
+      </tutorial/edit-your-user-account/index.html#edit-your-user-account>`. 
+
    .. code-block:: sh
 
       kubectl create secret generic <adminusercredentials> \