Skip to content

How can we improve the platform?

← Atlas

[Atlas] Enforce password policy for DB access

Currently is not possible to enforce any kind of password policy via Atlas UI.
Would be nice to let user define an expiration time and password policy that user should meet.

16 votes

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Renato shared this idea  ·   ·  Report…  ·  Admin →
How important is this to you?

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • Geoffrey commented  ·   ·  Report

    Enforce policy not just for password, but for all kind of configuration.

  • AdminAndrew Davidson (VP, Cloud Products, MongoDB) commented  ·   ·  Report

    Hi Renato,

    A few notes: MongoDB Atlas database users do have the concept of an expiration time (we call these temporary users).

    It's true that for MongoDB's SCRAM user/pass authentication option, Atlas does not allow you to define password rules: You can however look at using our Vault secrets engine integration which can do a lot of this for you: https://www.vaultproject.io/docs/secrets/databases/mongodbatlas

    Separately Atlas does support three other authentication options:
    - Passwordless X.509 client side certificates
    - LDAP which allows you to bring your own identity provider which can have its own rules (this model requires that Atlas cluster nodes be able to reach your LDAP service over the network, however)
    - and finally, with the introduction of MongoDB 4.4 beta: AWS IAM User/Role based authentication.

    Cheers
    -Andrew

Atlas: Other

Categories

Feedback and Knowledge Base

(thinking…)