{"id":9707,"date":"2024-05-04T13:04:18","date_gmt":"2024-05-04T13:04:18","guid":{"rendered":"https:\/\/www.ntspl.co.in\/blog\/?p=9707"},"modified":"2024-09-12T07:03:01","modified_gmt":"2024-09-12T07:03:01","slug":"mongodb-introduces-workload-identity-federation-for-database-access","status":"publish","type":"post","link":"https:\/\/www.ntspl.co.in\/blog\/mongodb-introduces-workload-identity-federation-for-database-access\/","title":{"rendered":"MongoDB Introduces Workload Identity Federation for Database Access"},"content":{"rendered":"<p><a href=\"https:\/\/www.mongodb.com\/products\/platform\/atlas-database\" target=\"_blank\" rel=\"noopener noreferrer\">MongoDB Atlas<\/a> customers run workloads (applications) inside AWS, Azure, and Google Cloud. Today, to enable these workloads to authenticate with MongoDB Atlas cluster\u2014customers create and manage MongoDB Atlas database users using the natively supported SCRAM (password) and X.509 authentication mechanisms and configure them in their workloads. Customers have to manage the full identity lifecycle of these users in their applications, including frequently rotating secrets. To meet their evolving security and compliance requirements, our enterprise customers require database users to be managed within their existing identity providers or cloud providers of their choice.<\/p>\n<p><b><a href=\"https:\/\/dochub.mongodb.org\/core\/oidc-workload\" target=\"_blank\" rel=\"noopener noreferrer\">Workload Identity Federation<\/a><\/b> will be in general availability later this month and allows management of MongoDB Atlas database users with Azure Managed Identities, Azure Service Principals, Google Service Accounts, or an <a href=\"https:\/\/datatracker.ietf.org\/doc\/html\/rfc6749\" target=\"_blank\" rel=\"noopener noreferrer\">OAuth2.0<\/a> compliant authorization service. This approach makes it easier for customers to manage, secure, and audit their MongoDB Atlas database users in their existing identity provider or a cloud provider of their choice and enables them to have &#8220;passwordless&#8221; access to their MongoDB Atlas databases.<\/p>\n<p>Along with Workload Identity Federation, <b><a href=\"https:\/\/www.mongodb.com\/blog\/post\/introduces-workforce-identity-federation-openid-connect-support-database-access\" target=\"_blank\" rel=\"noopener noreferrer\">Workforce Identity Federation<\/a><\/b>, which was launched in public preview last year, will be generally available later this month. Workforce Identity Federation allows organizations to configure access to MongoDB clusters for their employees with single sign-on (SSO) using OpenID Connect.<\/p>\n<p>Both features complement each other and enable organizations to have complete control of database access for both application users and employees.<\/p>\n<p>Workload Identity Federation support will be available in Atlas Dedicated Clusters on MongoDB 7.0 and above, and is supported by Java, C#, Node, and Python drivers. Go driver support will be added soon.<\/p>\n<p>Quick steps to get started with Workload Identity Federation:<\/p>\n<ol>\n<li>Configure Atlas with your OAuth2.0 compatible workload identity provider such as Azure or Google Cloud.<\/li>\n<li>Configure Azure Service Principal or Google Cloud Service Accounts for the Azure or Google Cloud resource where your application runs.<\/li>\n<li>Add the configured Azure Service Principal or Google Cloud Service Account as Atlas database users with Federated authentication.<\/li>\n<li>Using Python or any supported driver inside your application, authenticate and authorize with your workload identity provider and Atlas clusters.<\/li>\n<\/ol>\n<p>To learn more about Workload Identity Federation, please refer to the <a href=\"https:\/\/dochub.mongodb.org\/core\/oidc-workload\" target=\"_blank\" rel=\"noopener noreferrer\">documentation<\/a>. And to learn more about how MongoDB\u2019s robust operational and security controls protect your data, read more about our <a href=\"https:\/\/www.mongodb.com\/products\/capabilities\/security\" target=\"_blank\" rel=\"noopener noreferrer\">security features<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>MongoDB Atlas customers run workloads (applications) inside AWS, Azure, and Google Cloud. Today, to enable these workloads to authenticate with MongoDB Atlas cluster\u2014customers create and manage MongoDB Atlas database users using the natively supported SCRAM (password) and X.509 authentication mechanisms and configure them in their workloads. Customers have to manage the full identity lifecycle of [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":9737,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[438],"tags":[],"class_list":["post-9707","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technology"],"acf":{"custom_meta_title":"MongoDB Unveils Workload Identity Federation for Access","meta_description":"Learn how MongoDB's new Workload Identity Federation enhances security by providing secure database access, ensuring robust protection for your data.","meta_keyword":"","other_meta_tag":"<meta property=\"og:title\" content=\"MongoDB Unveils Workload Identity Federation for Access\">\r\n<meta property=\"og:site_name\" content=NTSPL>\r\n<meta property=\"og:url\" content=https:\/\/www.ntspl.co.in\/blog\/mongodb-introduces-workload-identity-federation-for-database-access\/>\r\n<meta property=\"og:description\" content=Learn how MongoDB's new Workload Identity Federation enhances security by providing secure database access, ensuring robust protection for your data.>\r\n<meta property=\"og:type\" content=\"Article\">\r\n<meta property=\"og:image\" content=https:\/\/www.ntspl.co.in\/blog\/wp-content\/uploads\/2024\/05\/Mongodb.jpg>\r\n\r\n<meta name=\"twitter:site\" content=\"@NTSPL\">\r\n<meta name=twitter:card content=\"summary\" \/>\r\n<meta name=twitter:description content=\"Learn how MongoDB's new Workload Identity Federation enhances security by providing secure database access, ensuring robust protection for your data\"\/>\r\n<meta name=twitter:title content=\"MongoDB Unveils Workload Identity Federation for Access\"\/>"},"_links":{"self":[{"href":"https:\/\/www.ntspl.co.in\/blog\/wp-json\/wp\/v2\/posts\/9707"}],"collection":[{"href":"https:\/\/www.ntspl.co.in\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.ntspl.co.in\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.ntspl.co.in\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ntspl.co.in\/blog\/wp-json\/wp\/v2\/comments?post=9707"}],"version-history":[{"count":4,"href":"https:\/\/www.ntspl.co.in\/blog\/wp-json\/wp\/v2\/posts\/9707\/revisions"}],"predecessor-version":[{"id":10530,"href":"https:\/\/www.ntspl.co.in\/blog\/wp-json\/wp\/v2\/posts\/9707\/revisions\/10530"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.ntspl.co.in\/blog\/wp-json\/wp\/v2\/media\/9737"}],"wp:attachment":[{"href":"https:\/\/www.ntspl.co.in\/blog\/wp-json\/wp\/v2\/media?parent=9707"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.ntspl.co.in\/blog\/wp-json\/wp\/v2\/categories?post=9707"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.ntspl.co.in\/blog\/wp-json\/wp\/v2\/tags?post=9707"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}