AdminAndrew Davidson
(VP, Cloud Products, MongoDB)
My feedback
173 results found
-
284 votes
An error occurred while saving the comment An error occurred while saving the comment Hi Todd,
We'd love to see you provide this feedback to Splunk too. We do plan to introduce a push-based destination for logs to S3 in the future which will open up more options.
Otherwise, in the interim we have pull-based integrations from jSonar (they can in fact route to Splunk) and Sumo Logic.
Cheers
-Andrew -
11 votes
An error occurred while saving the comment Hi Shil, If I'm not mistaken, you should be able to set the log level via a runtime parameter over the wire protocol in Atlas: note that this will be set until the process is next restarted.
-Andrew
-
2 votes
An error occurred while saving the comment Hi Adriaan,
Regarding (a) is it possible that you could integration MongoDB Atlas into your infrastructure as code posture using our Terraform provider? Or would Atlas be the only part of your stack using Terraform and that would be burdensome? We could explore introducing better integrations from Azure DevOps to MongoDB Atlas management over time--it's something we'd likely want to talk to you about for guidance in future.
Regarding (b) That makes sense: note that MongoDB Atlas does aim to provide easy to use billing visibility including at a glance rollups of Project-level spend within an Atlas Org: also this billing data is accessible through the Atlas API and can also be downloaded in CSV form for processing. Note as well that you can procure annualized subscriptions via the Azure marketplace. We would be happy to work with you to try to alleviate these challenges over time: many of our customers work through this including the political internal charge-back management, and we have resources that can help.
-Andrew
-
3 votes
An error occurred while saving the comment Hi Zach, This is great feedback: thank you. We are exploring how to improve the local development experience over time. I hope you don't mind if we reach out to directly for more insight :)
Thanks
-Andrew -
3 votes
An error occurred while saving the comment Hi Ilya,
Project Data Access Read Only should already have permissions to download Log files. I see there is an out of date note in our docs about this on https://docs.atlas.mongodb.com/reference/api/logs/index.html which I will have corrected.
Please do post an update if you can confirm the access works for you.
Thanks
-Andrew -
80 votes
An error occurred while saving the comment Hi Anand,
This certainly makes sense and is something we'd like to explore in the future. Out of curiosity, have you looked at programmatically driving this on a cron job with the Atlas API or Terraform provider?
Cheers
-Andrew -
1 vote
An error occurred while saving the comment Thanks Raghu, One of the reasons the name is tough to change is that it's part of the cluster hostname. Out of curiosity, would you prefer a model where the cluster hostnames were a truly random string but you could alias your cluster name in the UI?
Cheers
-Andrew -
1 vote
An error occurred while saving the comment Hi Decky, I am not quite clear on what you're proposing here: mind elaborating further? What's happening today that you think needs to be improved?
Thanks
-Andrew -
17 votes
An error occurred while saving the comment Hi Chandler,
Note that Atlas offers this capability for Project Owners in context of the Real Time Performance Panel.
Offering this capability at the database level is possible for the user that initiated the operation today as well.
Offering this capability universally at the database level is not an option over the medium term -- fundamental architectural changes would need to be made to the database engine authz framework for this to be introduced into Atlas safely and we have been prioritizing elsewhere.
-Andrew
-
7 votes
An error occurred while saving the comment Hi Hanspeter, We're targeting introducing Azure Private Link support later this year and aspire for that to be the way to get the transitive access you seek. In the interim you can leverage public IP whitelisting from your NAT'd public IP on-prem directly to Atlas, noting that Atlas requires end to end TLS network encryption.
Cheers
-Andrew -
20 votes
An error occurred while saving the comment Hi Renato,
A few notes: MongoDB Atlas database users do have the concept of an expiration time (we call these temporary users).
It's true that for MongoDB's SCRAM user/pass authentication option, Atlas does not allow you to define password rules: You can however look at using our Vault secrets engine integration which can do a lot of this for you: https://www.vaultproject.io/docs/secrets/databases/mongodbatlas
Separately Atlas does support three other authentication options:
- Passwordless X.509 client side certificates
- LDAP which allows you to bring your own identity provider which can have its own rules (this model requires that Atlas cluster nodes be able to reach your LDAP service over the network, however)
- and finally, with the introduction of MongoDB 4.4 beta: AWS IAM User/Role based authentication.Cheers
-Andrew -
6 votes
An error occurred while saving the comment Hi Juan,
Have you looked at running mongomirror yourself? This gives you the ability to "push" the data from your VPC to Atlas, and mongomirror is what powers Live Migration. For completeness, this model works for replica sets but not sharded clusters. https://docs.atlas.mongodb.com/import/mongomirror/
-Andrew
-
17 votes
An error occurred while saving the comment Gotcha, and Splunk can't be configured to receive an alert notification in-bound using a "lower tech" method like email or SMS?
An error occurred while saving the comment Hi Alex,
This can likely be done with Webhooks
https://docs.splunk.com/Documentation/Splunk/8.0.4/Alert/Webhooks
https://docs.atlas.mongodb.com/configure-alerts/Cheers
-Andrew -
2 votes
An error occurred while saving the comment Hi Connell,
Being intellectually honest with you, bringing a true SaaS-style experience to Azure Stack, Google Anthos, or AWS Outposts that compares with Atlas is unfortunately a very large undertaking.
However, where you cannot take advantage of a pure-play public cloud region on one of the big three, we do offer an alternative: MongoDB Cloud Manager offers software that helps you monitor, automate, and backup your self-managed MongoDB databases https://www.mongodb.com/cloud/cloud-manager While Cloud Manager certainly does require more work for you than Atlas, it at least offers that true flexibility you're seeking for when you need to reach regions that Atlas cannot yet reach. You can use our Kubernetes operator in this model by the way, which at least offers a standard orchestration tie-in for non-public cloud contexts.
-Andrew
-
8 votes
We recently released tags on database deployments. You can apply tags to new or existing clusters or serverless instances.
https://www.mongodb.com/docs/atlas/tags/
We are planning to have these tags displayed in billing Invoices and we'd love to hear more from you. Reach out to me if you'd like to provide additional feedback about this feature request.
An error occurred while saving the comment We definitely look forward to building a better way to manage billing contexts in the future, likely involving tagging, as well as to making Atlas cluster tags more visible within the UI in some capacity in the future. We are working on a number of other priorities right now so this will not be something we'll see for a while, unfortunately.
-Andrew
-
50 votes
An error occurred while saving the comment Hear you there: we are working on designing a very different higher level of abstraction offering that aims to deliver to what you want here. This is going to take time but definitely appreciate the feedback.
-Andrew
An error occurred while saving the comment Hi Babak,
One of the challenges is that it's significantly more expensive to opt into Provisioned IOPS even when not using too many of them -- Can you confirm whether you would be comfortable using Provisioned IOPS all the time (there is a significant premium cost to doing so) in order to leverage auto-scaling for IOPS?
Further, what kinds of indicators for your workload would you see as canonical drivers of needing to scale IOPS? We want to learn from you since this is nuanced and difficult to get right.
-Andrew
-
29 votes
An error occurred while saving the comment Hi Martel,
One option available today is configure identity federation (https://docs.atlas.mongodb.com/security/federated-authentication/) and then use the auditing that your IdP offers.
Note that Atlas audits any material action taken within the MongoDB Cloud UI (cluster configuration changes, security configuration changes, data explorer usage, etc).
-Andrew
-
25 votes
An error occurred while saving the comment It is possible to use the generic Webhooks endpoint to push to ServiceNow: We are working to get a tutorial documented.
-Andrew
-
38 votes
An error occurred while saving the comment Hi Neelakantan,
Have you seen both the data explorer (found under the "Collections" button on the Atlas cluster) which offers a query browser and aggregation pipeline builder, and MongoDB Charts which offers beautiful native visualizations on top of data in your MongoDB Atlas clusters?
Cheers
-Andrew -
1 vote
An error occurred while saving the comment Hi Colin,
Thanks for flagging: we hear you loud and clear here and will be working on this in a few months, after we complete some projects in flight. We'll be mindful to ensure that we don't break programmatic users of our APIs when making this change.
-Andrew
Hi Dan,
Out of curiosity, what is your preferred cloud provider? We plan to introduce push-based integrations for logs to cloud object storage in the future, targeting S3 first: we believe it should be easy to go to any SIEM or log solution like Splunk from there. I'm sorry we don't have something to serve your needs yet.
Note that we have pull-based integrations with jSonar (they can push to Splunk I believe) and Sumo Logic today.
-Andrew