Hello Everyone,
We are excited to announce that Atlas Resource Policies is now Generally Available!
Resource Policies at a glance:
Minimum TLS Version: Enforce minimum encryption standards by requiring modern TLS protocols across all Atlas deployments. This policy enhances security posture and helps maintain compliance while mitigating risks from older, less secure TLS versions.
Default TLS Ciphers: Customize encryption protocols by selecting a minimal or broader-compatibility set of allowed T:S ciphers. This flexibility enables teams to optimize their security posture based on operational requirements, while maintaining compliance and eliminating vulnerabilities from legacy encryption methods.
Restrict VPC Peering Modifications: Enable secure cross-network communication through established VPC Peering connections while preventing configuration changes. Current Project-level peerings remain active with their existing routing tables and security protocols, allowing customers to view but not alter these one-to-one VPC relationships and their associated network control mechanisms.
Restrict Private Endpoint Modifications: Maintain secure service connectivity through existing Private Endpoint configurations with read-only access. Project-level connections remain functional with their current private IP addressing scheme, while customers can view but not modify these dedicated service connection points within their Virtual Private Cloud
IP Access List Control: This feature strengthens database security by preventing unauthorized modifications to IP Access Lists, ensuring organizations maintain consistent control over which IP addresses can connect to their databases. Atlas deployments benefit from enhanced protection against accidental configuration changes, preserving carefully defined network access boundaries for all database resources.
Set Cluster Tier Limits: Define deployment guardrails by establishing both maximum and minimum cluster size limits that developers must adhere to when provisioning resources. This boundary-setting approach ensures teams can deploy appropriately sized environments within organization-approved parameters, optimizing infrastructure utilization while enforcing consistent resource allocation policies across all project workloads
Set Maintenance Window: Enhance platform stability by requiring a maintenance window for all projects. This governance control ensures organizations establish a predictable update period (without dictating a specific timeframe) to supporting consistent system maintenance according to operational needs
Additional Enhancements:
Atlas Resource Policies Graphical Editor: With the GA release, we’re excited to announce a new graphical policies editor in the Atlas UI. This intuitive tool allows you to create and manage resource policies visually using the Cedar domain-specific language.Streamline your policy design process while reducing potential errors by using a visual interface.
Policy Namespace: To help you better organize and maintain your policies, we’re introducing a dedicated namespace for resource policies. This clean separation from identity-based permissions ensures your organizational standards and governance rules remain easy to manage and scale.
These improvements are designed to give customers more clarity, control, and confidence in managing access and operations across their Atlas environment—reinforcing our ongoing commitment to secure, flexible, and user-friendly governance tools.
Experience these powerful enhancements today! If you are interested in learning more or have questions please send an email to atlas_resource_policy_eap@mongodb.com and we’ll be happy to connect with you.