MongoByte MongoDB Logo

Welcome to the new MongoDB Feedback Portal!

{Improvement: "Your idea"}
We’ve upgraded our system to better capture and act on your feedback.
Your feedback is meaningful and helps us build better products.

ADD NEW FEEDBACK

Security, IAM, and Compliance

Showing 109

Detect automatic AWS KMS key rotation in Atlas so that the alert “AWS encryption key needs rotation” is accurate

What problem are you trying to solve? Focus on the what and why of the need you have, not the how you'd like it solved. Atlas keeps incrementing a rotation age counter (>365, >700 days) for AWS CMKs with automatic rotation enabled becau...
Marc Richard 12 days ago in Security, IAM, and Compliance 0 Submitted
497 VOTE

Granular Permissions

Right now Mongo Atlas allows you to assign two types of roles to all the users: Organization and Project, and for each set it gives you some predefined roles. The problem with this is you can't have any kind of granular control of what permission...
Guest over 5 years ago in Atlas (Control Plane and Data Plane RBAC) 64 Started
102 VOTE

Allow an "Any Database" option for actions in custom roles

Much like built-in roles have the ability to target all databases/any database, it would be ideal if collection actions could also target any database. Similarly to how, when adding collection actions to a custom role, if you leave the "collection...
Guest about 5 years ago in Atlas (Control Plane and Data Plane RBAC) 15 Planned

Allow longer session duration values for Atlas UI

Currently Atlas allows configurable session timeout in Organization Settings, however it does not allow setting absolute session timeout above 12 hours. Need longer session durations.
Guest 20 days ago in Atlas (Control Plane and Data Plane RBAC) 0 Submitted

Support Google IdP for OIDC Workforce Federation

The Atlas supports federated login with external Identity Providers via OIDC (https://www.mongodb.com/docs/atlas/workforce-oidc/) for authenticating human users in tools like mongosh or Mongo Compass. Unfortunately the OIDC login doesn't work wit...
Guest about 1 year ago in Atlas (Control Plane and Data Plane RBAC) 4 Planned

Identify users via API that are regular project users versus federated or built-in (e.g., charts) users

Expand the API to allow a way to identify and differentiate federated users and other non-manageable users (like "Charts User") from regular project users in MongoDB Atlas using API output, similar to how the Atlas UI visually marks federated user...
Guest 6 months ago in Atlas (Control Plane and Data Plane RBAC) 2 Submitted

Return 'CreatedAt' for Programmatic API keys endpoints

We have an issue where we get emails from our internal Cybersecurity team 90 days after creating a MongoDB Atlas API key for rotation purposes. For other SaaS providers we're able to stay ahead of those emails by querying their APIs and getting th...
Guest 5 months ago in IAM 0 Submitted

Improve Admin API for API keys rotation

Given we have security mandates where we need to rotate API keys for an organization, every 365 days. It would be ideal if when calling https://www.mongodb.com/docs/atlas/reference/api-resources-spec/v2/#tag/Programmatic-API-Keys/operation/getApiK...
Guest about 1 year ago in IAM 2 Submitted

Granular permission for project level

Atlas project-level roles (like readWriteAnyDatabase or readAnyDatabase) apply universally across all clusters within the project. We understand the current limitation where roles like readWriteAnyDatabase or readAnyDatabase apply across all clust...
Guest 3 months ago in IAM 0 Submitted

Add support for custom comment field per API key access list entry

Currently, in the API Access List for an API Key in MongoDB Atlas, there is no way to associate metadata or context with each IP address or CIDR block. This makes it difficult to track the purpose or ownership of each entry, especially in environm...
Guest 5 months ago in Atlas (Control Plane and Data Plane RBAC) 0 Submitted