Security

The MongoDB Enterprise Kubernetes Operator is deprecated. The new MongoDB Controllers for Kubernetes Operator replaces the MongoDB Enterprise Kubernetes Operator. The first version of the Controllers for Kubernetes Operator is functionally equivalent to v1.33 of the Enterprise Kubernetes Operator. For more information about this change, and guidance on migrating to the new Operator, see the release notes for the first new version. There will be no future releases of the MongoDB Enterprise Kubernetes Operator. Each version will reach end of life according to the existing one year support policy. Please migrate to the Controllers for Kubernetes Operator for continued support.

The MongoDB Enterprise Kubernetes Operator provides various security features to secure your MongoDB deployments.

Verify Permissions: Verify the permissions for your Kubernetes Operator objects.
Verify MongoDB Signatures: Verify the signature file before running the MongoDB binary.
Apply OPA Gatekeeper Policies: Control, audit, and debug your deployments by using policies for the Gatekeeper Open Policy Agent (OPA).
Configure Encryption: Configure HTTPS and TLS to encrypt your data over the network.
Configure KMIP Encryption at Rest: Configure encryption at rest by using a KMIP server.
Enable Authentication: Set up X.509, LDAP, or SCRAM user authentication.
Configure Secret Storage: Use the secret storage tool to store sensitive information.