What is the best strategy for access key rotation?

Hello all !
What do you think is the best strategy for access key rotation without breaking any components that depend on it? Like k8s deployments, CI/CD users, etc.

• Create one more access key for the same user (So now the user has 2 access keys)
• Update the applications or references
• Once all applications are updated and running fine
• Remove the old access key (So now the user has 1 access key)