Changes the TLS identity file used for TLS communication within the cloud.
CALL DBCloud.AlterCloudIdentity ( identity_file=identity_file [, optional-parameters ] )
dbcloudcmd run AlterCloudIdentity identity_file [ optional-parameters ]
The new identity file. (Required)
The password used to decrypt a private key. Specify NULL to leave the password unencrypted. The default is NULL.
The hosts to update. Accepts a search query that identifies hosts. The search query can be a list of host names or IDs separated by semicolons (;), or a full search. The default is 'all:'.
The cloud ID. The default is the current cloud.
This task replaces the identity file used throughout the cloud for TLS-encrypted communication, such as HTTPS.
You must replace TLS certificates before they expire.
The identity file consists of a public certificate, an optional signing certificate, and a private key that can be encrypted. If the private key is encrypted, provide the correct password to decrypt it.
This parameter specifies hosts to deploy the new identity file to. This parameter can be used to exclude offline hosts. All hosts in the host_list must be running. To alter the TLS identity file when there are hosts that are not running, specify a host_list that excludes those hosts.
Hosts that are excluded from the host_list do not receive the new identity files and are no longer able to communicate with the cloud. Any hosts that are excluded from the host_list must have their identity files replaced manually.