Security >
Enable Authentication for a Cloud Manager Project >
Rotate Keyfile

Rotate Keyfile¶

On this page

Prerequisites
Procedure

If your cluster uses keyfile authentication, it is recommended that you rotate the keyfile periodically. Cloud Manager provides an automated procedure for keyfile rotation with no downtime.

To rotate the keyfile using the API instead of the user interface, see Rotate a Key File with the API.

Prerequisites¶

To perform a rolling keyfile rotation:

Authentication must be enabled.
At least one cluster in the project must be configured with the clusterAuthMode option set to keyFile or sendKeyFile.
All clusters in the project must be running MongoDB version 4.2 or higher.

Procedure¶

1

Navigate to the Authentication & SSL tab.¶

If it is not already displayed, select the organization that contains your desired project from the office icon Organizations menu in the navigation bar.
If it is not already displayed, select your desired project from the Projects menu in the navigation bar.
If it is not already displayed, click Deployment in the sidebar.
Click the Security tab.
Click the Authentication & SSL tab.

2

Click Rotate Keyfile.¶

The Rotate Keyfile button is in the Auth Mechanisms section.

3

Review your changes.¶

Click Review & Deploy.
The modal window contains a summary of the keyfile rotation procedure. If it all looks correct, click Confirm & Deploy.

← Clear Security Settings Rotate Automation Password →

Cloud Manager will no longer support Automation for MongoDB 3.4 clusters after February 10, 2022. Please upgrade your MongoDB deployment or migrate to Atlas.