Docs Menu

Docs HomeMongoDB Atlas for Government

Security

On this page

  • Preconfigured Security Features
  • Required Security Features
  • Optional Security Features

Preconfigured Security Features

TLS

MongoDB Atlas for Government and databases hosted in AtlasGov use TLS 1.2 to encrypt connections. This cannot be disabled.

FIPS 140-2

AtlasGov automatically enables FIPS 140-2 for all databases.

Required Security Features

You must configure the following secruity features:

Optional Security Features

A subset of commercial Atlas optional security features are available in AtlasGov with some limitations.

Encryption at Rest

  • You must use KMS keys in AWS GovCloud regions to encrypt data in AWS GovCloud region-only projects. You must use KMS keys in AWS Standard regions to encrypt data in AWS Standard region-only projects.

  • AWS is the only supported cloud provider for AtlasGov.

See the Atlas documentation to configure Customer Key Management with AWS KMS.

VPC Peering

  • You can only peer AWS GovCloud regions with MongoDB clusters in AWS GovCloud regions. You can only peer AWS Standard regions with MongoDB clusters in AWS Standard regions.

  • AWS is the only supported cloud provider for AtlasGov.

See the Atlas documentation to Set up a Network Peering Connection

Private Endpoints

  • You can only link AWS GovCloud regions with MongoDB clusters in AWS GovCloud regions. You can only link AWS Standard regions with MongoDB clusters in AWS Standard regions.

  • AWS is the only supported cloud provider for AtlasGov.

See the Atlas documentation to Set up a Private Endpoint.

←  Atlas SearchAPI →

On this page