Enhance documentation to attend 1319

- Add compatibility section
- Performance recommendations
- And security guidelines;
- Remove change password instructions

Author: YisDav

docs/SUMMARY.md

@@ -10,17 +10,18 @@
 # Reference Manual
 
 - [Introduction](ref/introduction.md)
+  - [Compatibility](ref/introduction/compatibility.md)
 - [Getting Started](ref/getting-started/getting-started.md)
   - [Requirements](ref/getting-started/requirements.md)
   - [Usage](ref/getting-started/usage/usage.md)
     - [Deployment](ref/getting-started/usage/deployment/deployment.md)
       - [AWS EKS Deployment](ref/getting-started/usage/deployment/eks.md)
       - [Local Deployment](ref/getting-started/usage/deployment/local.md)
       - [Verify deployment](ref/getting-started/usage/deployment/verify.md)
-    - [Change Passwords](ref/getting-started/usage/change-password.md)
     - [Upgrade](ref/getting-started/usage/upgrade.md)
     - [Cleanup](ref/getting-started/usage/cleanup.md)
     - [Security](ref/getting-started/usage/security.md)
     - [Backup and Restore](ref/getting-started/usage/backup-restore.md)
+    - [Performance](ref/getting-started/usage/performance.md)
 - [Configuration](ref/getting-started/configuration.md)
 - [Glossary](ref/glossary.md)

docs/ref/getting-started/configuration.md

@@ -77,3 +77,23 @@ Main secrets:
   Wazuh dashboard (Kibana) username and password.
 - `wazuh/secrets/indexer-cred-secret.yaml`
   Wazuh indexer username and password.
+
+## Persistence configuration
+
+When customizing your Wazuh Kubernetes deployment, certain files and directories must be persisted to retain your changes across pod restarts and recreations. This is critical for maintaining custom configurations, user credentials, and security settings.
+
+### PersistentVolumeClaims and ConfigMaps
+
+Kubernetes uses PersistentVolumeClaims (PVCs) and ConfigMaps to persist data outside of pod lifecycles:
+
+- **PersistentVolumeClaims**: Used for stateful data like logs, queues, and Indexer data. When a pod is deleted and recreated, data in PVCs remains intact.
+- **ConfigMaps**: Used for configuration files. ConfigMaps can be mounted as files in pods and updated independently of the pod lifecycle.
+
+The Wazuh deployment already uses PVCs for critical directories like `/var/ossec/etc`, `/var/ossec/logs`, and `/var/lib/wazuh-indexer`. For additional configuration files, use ConfigMaps as described above.
+
+> **Important**: When creating ConfigMaps for configuration files, ensure the file content is properly formatted and validated before applying. Malformed configuration files can prevent pods from starting.
+
+For more information on Kubernetes storage concepts, refer to the official Kubernetes documentation:
+
+- [Persistent Volumes](https://kubernetes.io/docs/concepts/storage/persistent-volumes/)
+- [ConfigMaps](https://kubernetes.io/docs/concepts/configuration/configmap/)

docs/ref/getting-started/usage/backup-restore.md

@@ -1 +1,41 @@
-# Backup and Restore
+# Backup and restore
+
+For backup and restore procedures, refer to the documentation for each component:
+
+- [Wazuh manager](https://github.com/wazuh/wazuh/blob/v5.0.0/docs/ref/backup-restore.md)
+- [Wazuh agent](https://github.com/wazuh/wazuh-agent/blob/v5.0.0/docs/ref/backup-restore.md)
+
+## Kubernetes-specific considerations
+
+When backing up Wazuh deployments on Kubernetes, also consider:
+
+### PersistentVolume backups
+
+- Wazuh Manager and Indexer data are stored in PersistentVolumes.
+- The indexer PersistentVolume contains the index data and indexer security state (including internal users).
+- Use your storage provider's snapshot or backup capabilities:
+  - **AWS EBS**: EBS snapshots via AWS Backup or manual snapshots
+  - **GCP Persistent Disk**: Disk snapshots
+  - **Azure Disk**: Disk snapshots
+  - **On-premises**: Storage backend-specific backup tools
+- Consider using Kubernetes backup tools like Velero for automated PV backups.
+
+### Secrets and configuration
+
+Back up the following Kubernetes Secrets containing credentials and certificates:
+
+- `wazuh/secrets/wazuh-api-cred-secret.yaml` - Wazuh API credentials
+- `wazuh/secrets/dashboard-cred-secret.yaml` - Dashboard credentials
+- `wazuh/secrets/indexer-cred-secret.yaml` - Indexer credentials
+- `wazuh/secrets/wazuh-authd-pass-secret.yaml` - Agent enrollment password
+- `wazuh/secrets/wazuh-cluster-key-secret.yaml` - Cluster communication key
+- Certificate secrets generated by the `wazuh-certs-tool.sh` script
+
+Also back up any custom ConfigMaps you have created for configuration file persistence.
+
+Store backups securely and encrypt them if they contain sensitive data.
+
+### Manifest files
+
+- Maintain version-controlled copies of all Kubernetes manifests, including customizations in `envs/`.
+- This allows you to recreate the deployment configuration even if the cluster is lost.