What problem are you trying to solve?

Focus on the what and why of the need you have, not the how you'd like it solved.

We manage the Atlas MongoDB foundation for our company and provide our customers projects where they are free to create their own cluster.

In order to enforce some permission boundaries on Project Owner, we (as Organization Owner) want to deny some actions, for example:

• disable the maintanance window

• modify private endpoint configuration

and others, because these configuration are under our ownership.

What would you like to see happen?

Describe the desired outcome or enhancement.

We would like to use the "principal" attribute in order to affect Project Owner only

Why is this important to you or your team?

Explain how the request adds value or solves a business need.

It's really important in order to implement real foundation as other CSPs, where there is a team which manages the foundation and dev teams that have some kind of boundaries in their permissions in order to not edit foundation configuration.

What steps, if any, are you taking today to manage this problem?