redis · rrelledge · May 23, 2024 · May 22, 2024
diff --git a/content/operate/rs/references/rest-api/requests/cluster/certificates/_index.md b/content/operate/rs/references/rest-api/requests/cluster/certificates/_index.md
@@ -10,11 +10,14 @@ headerRange: '[1-2]'
 hideListLinks: true
 linkTitle: certificates
 weight: $weight
+aliases: 
+    - /operate/rs/references/rest-api/requests/cluster/update-cert
 ---
 
 | Method | Path | Description |
 |--------|------|-------------|
 | [GET](#get-cluster-certificates) | `/v1/cluster/certificates` | Get cluster certificates |
+| [PUT](#put-cluster-update_cert) | `/v1/cluster/update_cert` | Update a cluster certificate |
 | [DELETE](#delete-cluster-certificate) | `/v1/cluster/certificates/{certificate_name}` | Delete cluster certificate |
 
 ## Get cluster certificates {#get-cluster-certificates}
@@ -63,6 +66,55 @@ Returns a JSON object that contains the cluster's certificates and keys.
 |------|-------------|
 | [200 OK](http://www.w3.org/Protocols/rfc2616/rfc2616-sec10.html#sec10.2.1) | No error |
 
+
+## Update cluster certificate {#put-cluster-update_cert}
+
+```sh
+PUT /v1/cluster/update_cert
+```
+
+Replaces an existing certificate on all nodes within the cluster with a new certificate. The new certificate must pass validation before it can replace the old certificate.
+
+See the [certificates table]({{< relref "/operate/rs/security/certificates" >}}) for the list of cluster certificates and their descriptions.
+
+### Request {#put-request}
+
+#### Example HTTP request
+
+```sh
+PUT /cluster/update_cert
+```
+
+#### Example JSON body
+
+```json
+{
+    "name": "certificate1",
+    "key": "-----BEGIN RSA PRIVATE KEY-----\n[key_content]\n-----END RSA PRIVATE KEY-----",
+    "certificate": "-----BEGIN CERTIFICATE-----\n[cert_content]\n-----END CERTIFICATE-----",
+}
+```
+
+Replace `[key_content]` with the content of the private key and `[cert_content]` with the content of the certificate.
+
+### Response {#put-response}
+
+Responds with the `200 OK` status code if the certificate replacement succeeds across the entire cluster.
+
+Otherwise, retry the certificate update in case the failure was due to a temporary issue in the cluster.
+
+### Status codes {#put-status-codes}
+
+| Code | Description |
+|------|-------------|
+| [200 OK](http://www.w3.org/Protocols/rfc2616/rfc2616-sec10.html#sec10.2.1) | No error |
+| [400 Bad Request](http://www.w3.org/Protocols/rfc2616/rfc2616-sec10.html#sec10.4.1) | Failed, invalid certificate. |
+| [403 Forbidden](http://www.w3.org/Protocols/rfc2616/rfc2616-sec10.html#sec10.4.4) | Failed, unknown certificate. |
+| [404 Not Found](http://www.w3.org/Protocols/rfc2616/rfc2616-sec10.html#sec10.4.5) | Failed, invalid certificate. |
+| [406 Not Acceptable](http://www.w3.org/Protocols/rfc2616/rfc2616-sec10.html#sec10.4.7) | Failed, expired certificate. |
+| [409 Conflict](http://www.w3.org/Protocols/rfc2616/rfc2616-sec10.html#sec10.4.10) | Failed, not all nodes have been updated. |
+
+
 ## Delete cluster certificate {#delete-cluster-certificate}
 
 	DELETE /v1/cluster/certificates/{string: certificate_name}

diff --git a/content/operate/rs/references/rest-api/requests/cluster/update-cert.md b/content/operate/rs/references/rest-api/requests/cluster/update-cert.md
diff --git a/content/operate/rs/security/certificates/updating-certificates.md b/content/operate/rs/security/certificates/updating-certificates.md
@@ -70,7 +70,7 @@ rladmin cluster certificate set cm certificate_file cluster.pem key_file key.pem
 
 ### Use the REST API
 
-To replace a certificate using the REST API, use [`PUT /v1/cluster/update_cert`]({{< relref "/operate/rs/references/rest-api/requests/cluster/update-cert#put-cluster-update_cert" >}}):
+To replace a certificate using the REST API, use [`PUT /v1/cluster/update_cert`]({{< relref "/operate/rs/references/rest-api/requests/cluster/certificates#put-cluster-update_cert" >}}):
 
 ```sh
 PUT https://[host][:port]/v1/cluster/update_cert