MongoByte
Welcome to the new MongoDB Feedback Portal!
{Improvement: "Your idea"}
We’ve upgraded our system to better capture and act on your feedback.
Your feedback is meaningful and helps us build better products.
Welcome to the new MongoDB Feedback Portal!
{Improvement: "Your idea"}
We’ve upgraded our system to better capture and act on your feedback.
Your feedback is meaningful and helps us build better products.
|
What problem are you trying to solve? Focus on the what and why of the need you have, not the how you'd like it solved. |
Currently, Atlas only offers built-in roles, which limits the ability to tailor permissions based on unique organizational and IT/security requirements |
|
What would you like to see happen? Describe the desired outcome or enhancement. |
Introduce custom RBAC for the Atlas control plane (Atlas UI and Administration API). This allows for the creation of tailored permission sets based on specific organizational security and compliance requirements. |
|
Why is this important to you or your team? Explain how the request adds value or solves a business need. |
Instead of relying on rigid built-in roles, this feature empowers us to customize permissions to meet our unique compliance and security mandates. |
What steps, if any, are you taking today to manage this problem? |
For some operational needs, we use an internal control plane / automation, ensuring that human access is restricted to a specific subset of API endpoints in accordance with the principle of least privilege. |
We have been waiting for this feature for at least five years.
It is essential to streamline and strengthen our internal and external audit processes. As it stands, the lack of enterprise‑grade capabilities in this area forces us to rely on costly, complex workarounds that are difficult to audit and maintain.
We urge you to evolve the platform to deliver functionality that is aligned with the real requirements of large organizations, particularly in terms of governance, traceability, and compliance.
we have a need to allow certain users to be able to view the size of collections without being able to read the collection data.
the only roles I can use today that allows viewing of collection sizes is Project Data Access Read Only. But this also allows reading of collection data, which we don't want to allow.