Update procedure for using external certificate

Author: jovial

doc/source/configuration/wazuh.rst

@@ -275,11 +275,24 @@ does not exist, it will generate the following certificates in ``{{ kayobe_env_c
    * root-ca.key  root-ca.pem
 
 
-It is also possible to use externally generated certificates for wazuh-dashboard. root-ca.pem should contain the CA chain.
-Those certificates can be placed in ``{{ kayobe_env_config_path }}/wazuh/wazuh-certificates``. Certificates should have the
-same name scheme as those generated by wazuh (typicaly <node-name>.pem)
-The key for the external certificate should be in PKCS#8 format
-(in its header it may have BEGIN PRIVATE KEY instead of BEGIN RSA PRIVATE KEY or BEGIN OPENSSH PRIVATE KEY).
+It is also possible to use externally generated certificates for
+wazuh-dashboard. Customise the ``dashboard_node_name`` variable so that you can
+use a separate certificate and key for this service e.g:
+
+.. code-block:: yaml
+   :caption: $KAYOBE_CONFIG_PATH/inventory/group_vars/wazuh-manager/wazuh-manager
+
+    dashboard_node_name: "wazuh-dashboard"
+
+You will need to create two files matching the following pattern:
+
+- ``{{ dashboard_node_name }}-key.pem`` for the private key
+- ``{{ dashboard_node_name }}.pem`` for the certificate
+
+Drop these files into ``$KAYOBE_CONFIG_PATH/environments/<environment>/wazuh/wazuh-certificates/`` if
+using the kayobe environments feature, or ``$KAYOBE_CONFIG_PATH/wazuh/wazuh-certificates/`` if not.
+The key for the external certificate should be in PKCS#8 format (in its header it may have BEGIN
+PRIVATE KEY instead of BEGIN RSA PRIVATE KEY or BEGIN OPENSSH PRIVATE KEY).
 
 Example OpenSSL rune to convert to PKCS#8: