Manage MongoDB Atlas Database Secrets in HashiCorp Vault

HashiCorp announced the general availability of Vault 1.4, which now supports MongoDB Atlas through two integrated secrets engines. The MongoDB Atlas Database Users Vault Secrets Engine allows for the creation of unique and temporary database users, managed programmatically within Vault, enhancing support for MongoDB Atlas customers by extending the existing database secrets engine. Meanwhile, the MongoDB Atlas Vault Secrets Engine generates ephemeral programmatic API keys with specific roles and permissions, including IP whitelisting for secure access. Users are guided through a setup process involving API key creation and Vault configuration, enabling the management of MongoDB Atlas database users and API keys with defined lifecycle parameters such as time-to-live (TTL) and renewal options. The article emphasizes the flexibility and security enhancements provided by these features, alongside practical guidance on implementing and managing these secrets, with additional resources and support available from HashiCorp and MongoDB.