Rotate Keyfile
If your cluster uses keyfile authentication,
it is recommended that you rotate the keyfile periodically. Cloud Manager
provides an automated procedure for keyfile rotation with no downtime.
Prerequisites
To perform a rolling keyfile rotation:
- Authentication must be enabled.
- At least one cluster in the project must be configured with the
clusterAuthMode
option set to
keyFile
or sendKeyFile
.
- All clusters in the project must be running MongoDB version 4.2 or
higher.
Procedure
Navigate to the Authentication & SSL tab.
- If it is not already displayed, select the organization that
contains your desired project from the
office icon
Organizations menu in the
navigation bar.
- If it is not already displayed, select your desired project
from the Projects menu in the navigation bar.
- If it is not already displayed, click Deployments in
the sidebar.
- Click the Security tab.
- Click the Authentication & SSL tab.
Click Rotate Keyfile.
The Rotate Keyfile button is in the Auth Mechanisms
section.
Review your changes.
- Click Review & Deploy.
- The modal window contains a summary of the keyfile rotation
procedure. If it all looks correct, click
Confirm & Deploy.