Werk #18964: OTel: Remove explicit passwords from collector configuration
| Component | Setup | ||||
| Title | OTel: Remove explicit passwords from collector configuration | ||||
| Date | Nov 10, 2025 | ||||
| Level | Trivial Change | ||||
| Class | Bug Fix | ||||
| Compatibility | Incompatible - Manual interaction might be required | ||||
| Checkmk versions & editions |
|
You are affected by this Werk if you are using the experimental OpenTelemetry integration and your collector configuration includes explicit passwords.
Previously the OpenTelemetry receiver collector configuration offered the option to add explicit passwords as credentials for the endpoint authentication. These passwords were written in plaintext into the Checkmk configuration on disk. When providing the collector with its configuration, all passwords were also written in plaintext into the configuration file.
With this Werk, explicit passwords can no longer be configured and passwords will no longer be stored in plain text to improve security. Instead, only passwords stored in the passwordstore can be selected as credentials in the collector configurations. There is an option to directly create and store a new password when making the selection. The configured passwords are then provided as environment variables to the collector.