It seems like your browser didn't download the required fonts. Please revise your security settings and try again.

Login Sign Up Contact & Support

United States – English (GMT-5)

Email Protection

Total Email Protection

Email Gateway Defense (Email Security)

Impersonation Protection (Sentinel)

Cloud Archiving Service

Security Awareness Training (PhishLine)

Email Security Gateway

Domain Fraud Protection

Incident Response

Message Archiver

WAF-as-a-Service

Web Application Firewall

Cloud Security Guardian

Load Balancer ADC

Vulnerability Manager

Vulnerability Remediation Service

WAF Control Center

Active DDoS Prevention

CloudGen Firewall

CloudGen Access

Network Access Client

Firewall Insights

Web Security Gateway

Web Security Agent

Firewall Policy Manager

Cloud-to-Cloud Backup

RMM (Managed Workplace)

Managed Security Awareness Training (Managed Phishline)

Intronis Backup (ECHOplatform)

MSP Knowledge Base

Site Security Scanner

MSP – Partner Enablement

Server Backup (Yosemite)

Campus Help Center / Reference

Onboarding Portal

Network Security

Support Services

Barracuda WAF-as-a-Service

Overview Documentation Training Certification Materials

Email Protection

Total Email Protection

Email Gateway Defense (Email Security)

Impersonation Protection (Sentinel)

Cloud Archiving Service

Security Awareness Training (PhishLine)

Email Security Gateway

Domain Fraud Protection

Incident Response

Message Archiver

WAF-as-a-Service

Web Application Firewall

Cloud Security Guardian

Load Balancer ADC

Vulnerability Manager

Vulnerability Remediation Service

WAF Control Center

Active DDoS Prevention

CloudGen Firewall

CloudGen Access

Network Access Client

Firewall Insights

Web Security Gateway

Web Security Agent

Firewall Policy Manager

Cloud-to-Cloud Backup

RMM (Managed Workplace)

Managed Security Awareness Training (Managed Phishline)

Intronis Backup (ECHOplatform)

MSP Knowledge Base

Site Security Scanner

MSP – Partner Enablement

Server Backup (Yosemite)

Campus Help Center / Reference

Onboarding Portal

Network Security

Support Services

Login Sign Up Contact & Support

United States – English (GMT-5)

Rotating Container Config Keys

Last updated on 2023-03-17 13:17:23

A config key defines a container's entire configuration. It is referenced whenever a container is deployed, starts or scales up.

It may become necessary to replace the config key in use with a new one. Reasons for replacing a key include:

It is suspected that the config key in use has been leaked.
Security compliance requirements mandate rotating config keys.

If a config key in use is regenerated, the container and applications associated with it will stop working. They must be redeployed with a new key. Barracuda WAF-as-a-Service allows you to easily generate and rotate keys.

Generating a New Config Token

From the Resources tab, navigate to WAF Containers > Container Management.
Find your container in the table and expand the menu in the Actions column.
Select Manage Config Keys.
The modal that opens shows two config keys. Click the Regenerate link to replace either one with a newly generated key.
Important
Make sure you do not regenerate a config key that is used by any running containers. Convert them to the other key beforehand.

Rotating a Config Key

To switch a container to a different config key, do the following:

From the Resources tab, navigate to WAF Containers > Container Management.
Find your container in the table and expand the menu in the Actions column.
Select Manage Config Keys.
Copy the config key that you want to use.
Manually edit the container deployment file you used to deploy the container. Replace the old config key with the new one.
Redeploy the Container.

If you no longer have the container deployment file, you can Create a New Container Deployment File. As you go through the wizard to help you create a new file, select the new config key on the Container Deployment Advanced Options screen. Then Redeploy the Container.