RS: Access control doc improvements (#349)

* DOC-3840 RS: Rename manage users and manage passwords

* DOC-3687 DOC-3689 Reorganize RS access control docs

* DOC-3685 Revise admin console security to recommended security practices

* DOC-3688 A few create roles updates

* DOC-3688 Update create roles for cluster access only

* DOC-3688 New cluster-only role screenshot and db-only role instructions

* DOC-3688 Update create db-only roles

* DOC-3688 Update create combined access role instructions and screenshots

* DOC-3688 Separate Redis ACL overview from create db-only roles

* DOC-3686 Update access control index page

* DOC-3683 Update security index page

* Feedback update to visually separate autogenerated links from default user section

* Apply suggestions from code review

Co-authored-by: mich-elle-luna <153109578+mich-elle-luna@users.noreply.github.com>

* Replace RBAC diagram

* Feedback update to mention that passwords are stored using SHA-256 encryption

* Typo fix

* Feedback updates for security index table

* Feedback updates for RBAC docs

---------

Co-authored-by: mich-elle-luna <153109578+mich-elle-luna@users.noreply.github.com>

Author: rrelledge

content/operate/kubernetes/security/ldap.md

@@ -12,7 +12,7 @@ weight: 95
 
 ## LDAP support for Redis Enterprise Software
 
-Redis Enterprise Software supports LDAP authentication and authorization through [role-based access controls]({{< relref "/operate/rs/security/access-control/" >}}) (RBAC). You can map LDAP groups to [Redis Enterprise roles]({{< relref "/operate/rs/security/access-control/rbac/create-roles" >}}) to control access to your database and the [admin console]({{< relref "/operate/rs/security/admin-console-security/" >}}). For more details on how LDAP works with Redis Enterprise, see [LDAP authentication]({{< relref "/operate/rs/security/access-control/ldap/" >}}).
+Redis Enterprise Software supports LDAP authentication and authorization through [role-based access controls]({{< relref "/operate/rs/security/access-control/" >}}) (RBAC). You can map LDAP groups to [Redis Enterprise roles]({{< relref "/operate/rs/security/access-control/create-roles" >}}) to control access to your database and the [admin console]({{< relref "/operate/rs/security/recommended-security-practices/" >}}). For more details on how LDAP works with Redis Enterprise, see [LDAP authentication]({{< relref "/operate/rs/security/access-control/ldap/" >}}).
 
 Redis Enterprise for Kubernetes supports enabling and configuring LDAP authentication using the `RedisEnterpriseCluster` (REC) custom resource. Currently, the Redis Enterprise cluster (REC) only supports configuration related to the LDAP server, such as server addresses, connection details, credentials, and query configuration.
 

content/operate/kubernetes/security/manage-rec-credentials.md

@@ -110,7 +110,7 @@ The credentials can be used to access the Redis Enterprise admin console or the
 
 1. [Connect to the admin console]({{< relref "/operate/kubernetes/re-clusters/connect-to-admin-console.md" >}})
 
-1. [Add another admin user]({{< relref "/operate/rs/security/access-control/manage-users/add-users" >}}) and choose a new password.
+1. [Add another admin user]({{< relref "/operate/rs/security/access-control/create-users" >}}) and choose a new password.
 
 1. Specify the new username in the `username` field of your REC custom resource spec.
 

content/operate/rs/_index.md

@@ -42,7 +42,7 @@ Create and manage a [Redis database]({{< relref "/operate/rs/databases" >}}) on
 ## Security
 [Manage secure connections]({{< relref "/operate/rs/security" >}}) to the cluster and databases.
 - [Access control]({{< relref "/operate/rs/security/access-control" >}})
-- [Users]({{< relref "/operate/rs/security/access-control/manage-users" >}}) & [roles]({{< relref "/operate/rs/security/access-control/rbac/create-roles" >}})
+- [Users]({{< relref "/operate/rs/security/access-control/manage-users" >}}) & [roles]({{< relref "/operate/rs/security/access-control/create-roles" >}})
 - [Certificates]({{< relref "/operate/rs/security/certificates" >}})
 - [TLS]({{< relref "/operate/rs/security/encryption/tls" >}}) & [Encryption]({{< relref "/operate/rs/security/encryption" >}})
 

content/operate/rs/databases/active-active/create.md

@@ -197,17 +197,17 @@ You cannot enable or turn off database clustering after the Active-Active databa
 
     Creating a database without ACLs enables a *default* user with full access to the database. You can secure default user access by requiring a password.
 
-- **Access Control List** - You can specify the [user roles]({{< relref "/operate/rs/security/access-control/rbac/create-roles" >}}) that have access to the database and the [Redis ACLs]({{< relref "/operate/rs/security/access-control/rbac/configure-acl" >}}) that apply to those connections.
+- **Access Control List** - You can specify the [user roles]({{< relref "/operate/rs/security/access-control/create-roles" >}}) that have access to the database and the [Redis ACLs]({{< relref "/operate/rs/security/access-control/create-db-roles" >}}) that apply to those connections.
 
     You can only configure access control after the Active-Active database is created. In each participating cluster, add ACLs after database creation.
 
     To define an access control list for a database:
 
     1. In **Security > Access Control > Access Control List**, select **+ Add ACL**.
 
-    1. Select a [role]({{< relref "/operate/rs/security/access-control/rbac/create-roles" >}}) to grant database access.
+    1. Select a [role]({{< relref "/operate/rs/security/access-control/create-roles" >}}) to grant database access.
 
-    1. Associate a [Redis ACL]({{< relref "/operate/rs/security/access-control/rbac/configure-acl" >}}) with the role and database.
+    1. Associate a [Redis ACL]({{< relref "/operate/rs/security/access-control/create-db-roles" >}}) with the role and database.
 
     1. Select the check mark to add the ACL.
 

content/operate/rs/databases/configure/_index.md

@@ -155,15 +155,15 @@ You can require [**TLS**]({{< relref "/operate/rs/security/encryption/tls/" >}})
 
     Creating a database without ACLs enables a *default* user with full access to the database. You can secure default user access by requiring a password.
 
-- **Access Control List** - You can specify the [user roles]({{< relref "/operate/rs/security/access-control/rbac/create-roles" >}}) that have access to the database and the [Redis ACLs]({{< relref "/operate/rs/security/access-control/rbac/configure-acl" >}}) that apply to those connections.
+- **Access Control List** - You can specify the [user roles]({{< relref "/operate/rs/security/access-control/create-roles" >}}) that have access to the database and the [Redis ACLs]({{< relref "/operate/rs/security/access-control/create-db-roles" >}}) that apply to those connections.
 
     To define an access control list for a database:
 
     1. In **Security > Access Control > Access Control List**, select **+ Add ACL**.
 
-    1. Select a [role]({{< relref "/operate/rs/security/access-control/rbac/create-roles" >}}) to grant database access.
+    1. Select a [role]({{< relref "/operate/rs/security/access-control/create-roles" >}}) to grant database access.
 
-    1. Associate a [Redis ACL]({{< relref "/operate/rs/security/access-control/rbac/configure-acl" >}}) with the role and database.
+    1. Associate a [Redis ACL]({{< relref "/operate/rs/security/access-control/create-db-roles" >}}) with the role and database.
 
     1. Select the check mark to add the ACL.
 

content/operate/rs/installing-upgrading/_index.md

@@ -63,7 +63,7 @@ More information is available to help with customization and related questions:
 
 After you install Redis Enterprise Software and set up your cluster, you can:
 
-- [Add users]({{< relref "/operate/rs/security/access-control/manage-users/add-users" >}}) to the cluster with specific permissions.  To begin, start with [Access control]({{< relref "/operate/rs/security/access-control" >}}).
+- [Add users]({{< relref "/operate/rs/security/access-control/create-users" >}}) to the cluster with specific permissions.  To begin, start with [Access control]({{< relref "/operate/rs/security/access-control" >}}).
 
 - [Create databases]({{< relref "/operate/rs/databases/create" >}}) to use with your applications.
 

content/operate/rs/installing-upgrading/install/_index.md

@@ -55,6 +55,6 @@ To learn more about customization and find answers to related questions, see:
 
 After your cluster is set up with nodes, you can:
 
-- [Add users]({{< relref "/operate/rs/security/access-control/manage-users/add-users" >}}) to the cluster with specific permissions.  To begin, start with [Access control]({{< relref "/operate/rs/security/access-control" >}}).
+- [Add users]({{< relref "/operate/rs/security/access-control/create-users" >}}) to the cluster with specific permissions.  To begin, start with [Access control]({{< relref "/operate/rs/security/access-control" >}}).
 - [Create databases]({{< relref "/operate/rs/databases/create" >}}) to use with your applications.
 

content/operate/rs/installing-upgrading/install/install-on-linux.md

@@ -134,4 +134,4 @@ As a workaround to install Redis Enterprise Software without using any root dire
 
     For geo-distributed Active-Active replication, create an [Active-Active]({{< relref "/operate/rs/databases/active-active/create.md" >}}) database.
 
-1. [Add users]({{< relref "/operate/rs/security/access-control/manage-users/add-users" >}}) to the cluster with specific permissions.  To begin, start with [Access control]({{< relref "/operate/rs/security/access-control" >}}).
+1. [Add users]({{< relref "/operate/rs/security/access-control/create-users" >}}) to the cluster with specific permissions.  To begin, start with [Access control]({{< relref "/operate/rs/security/access-control" >}}).

content/operate/rs/references/rest-api/objects/redis_acl.md

@@ -10,7 +10,7 @@ linkTitle: redis_acl
 weight: $weight
 ---
 
-An API object that represents a Redis [access control list (ACL)]({{< relref "/operate/rs/security/access-control/rbac/configure-acl" >}})
+An API object that represents a Redis [access control list (ACL)]({{< relref "/operate/rs/security/access-control/create-db-roles" >}})
 
 | Name | Type/Value | Description |
 |------|------------|-------------|

content/operate/rs/references/rest-api/permissions.md

@@ -13,7 +13,7 @@ weight: 60
 
 Some Redis Enterprise [REST API requests]({{< relref "/operate/rs/references/rest-api/requests" >}}) may require the user to have specific permissions.
 
-Administrators can assign a predefined role to a user with the [Cluster Manager UI]({{< relref "/operate/rs/security/access-control/manage-users/add-users" >}}) or a [<nobr>`PUT /users/{uid}`</nobr> API request]({{< relref "/operate/rs/references/rest-api/requests/users#put-user" >}}) to grant necessary permissions to them.
+Administrators can assign a predefined role to a user with the [Cluster Manager UI]({{< relref "/operate/rs/security/access-control/create-users" >}}) or a [<nobr>`PUT /users/{uid}`</nobr> API request]({{< relref "/operate/rs/references/rest-api/requests/users#put-user" >}}) to grant necessary permissions to them.
 
 ## Roles