> For the complete documentation index, see [llms.txt](https://docs.sprinto.com/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.sprinto.com/integrations/overview/mongodb-atlas-integration.md).

# MongoDB Atlas Integration

The MongoDB Atlas integration enables Sprinto to monitor your database infrastructure and user access for compliance frameworks such as SOC 2 and ISO 27001.

Once connected, Sprinto automatically retrieves organisation, cluster, and user-level data from MongoDB Atlas to:

* Track access across projects and databases
* Monitor configuration and security posture
* Support access reviews and audit readiness

This integration uses the MongoDB Atlas Administration API and authenticates using API keys.

{% hint style="info" %}

#### Note

Sprinto currently uses **API key-based authentication** to connect to MongoDB Atlas. However, MongoDB now recommends using **Service Accounts** instead of API keys for production integrations, as API keys are considered a legacy authentication method.

To create an API key (current method):

1. You must have **Organization Owner** access in MongoDB Atlas.
2. Create an API key with the **Organization Read Only** role.
3. Copy and securely store the Public Key and Private Key.

Future updates to this integration may migrate to Service Account authentication to align with MongoDB's recommendations.
{% endhint %}

***

### How It Works

Sprinto connects to MongoDB Atlas using API key-based authentication and interacts with the Atlas Administration API to retrieve metadata required for compliance monitoring.

* Sprinto uses the **Atlas Administration API** (`https://cloud.mongodb.com/api/atlas/v2`) to fetch data.
* Authentication is performed using a **Public Key and Private Key pair** (HTTP Digest authentication).
* Sprinto reads organisation-level and project-level information such as users, clusters, and roles.
* The integration is **read-only**, ensuring no changes are made to your MongoDB Atlas environment.

This data is then used to power:

* Access reviews
* User activity tracking
* Compliance checks and controls

***

### Permissions and Data Access

#### Permissions Required

To integrate MongoDB Atlas with Sprinto, ensure:

* **Organisation Role:** Organisation Owner (required to create API keys)
* **API Key Role:** Organisation Read Only

The Organisation Read Only role ensures Sprinto can retrieve necessary data without modifying any resources.

***

#### Data Accessed by Sprinto

Sprinto collects the following metadata:

* Organisations
* Projects and clusters
* Hosts and infrastructure details
* User accounts and roles
* Access groups and permissions

This data is used strictly for compliance monitoring and audit evidence generation.

***

### Prerequisites

Before setting up the integration, ensure the following:

* You have **admin access (Organisation Owner)** in MongoDB Atlas.
* Multi-Factor Authentication (MFA) is enabled for all users.
* You have access to create API keys in the Atlas console.
* Atlas Admin API access is allowed (IP access restrictions configured appropriately).

***

### Setup Instructions

#### Step 1: Navigate to MongoDB Atlas Integration

1. Log in to the Sprinto dashboard.
2. Go to **Settings → Integrations**.
3. In the **All** tab, search for **Mongo Atlas**.
4. Click **Connect**.

<figure><img src="/files/pNnyMmtLwjcWsfufBsri" alt="" width="563"><figcaption></figcaption></figure>

***

#### Step 2: Review Permissions and Data

1. In the integration drawer, review:
   * Controls and checks automated
   * Permissions required
   * Data accessed by Sprinto
2. Click **Next**.

<figure><img src="/files/rscQQyJZ4Xs4TcDe4LT1" alt="" width="375"><figcaption></figcaption></figure>

***

#### Step 3: Generate API Keys in MongoDB Atlas

1. Log in to the [MongoDB Atlas](https://account.mongodb.com/account/login) console.
2. Navigate to **Identity & Access** and click **Applications**.
3. Go to the API Keys tab.
4. Click Add new API Key.

<figure><img src="/files/UPPTXnGw31ANyufOrYGi" alt="" width="563"><figcaption></figcaption></figure>

4. Provide a description for the key.
5. Assign the role: Organization Read Only.
6. Click **Next**.

<figure><img src="/files/lPthSGGMvoltU1PPjLRR" alt="" width="563"><figcaption></figcaption></figure>

4. Copy and securely store the **Public Key** and the **Private Key**.

<figure><img src="/files/wlKKV0iVZRWuQd5yIm5y" alt="" width="563"><figcaption></figcaption></figure>

***

#### Step 4: Add API Keys in Sprinto

1. Return to Sprinto.
2. Enter:
   * Public Key
   * Private Key
3. Click **Connect Mongo Atlas**.

<figure><img src="/files/Ppw8h3xRO1feIjNHq1Sc" alt="" width="375"><figcaption></figcaption></figure>

***

### Post-Connection Flow

Once the integration is successfully connected:

* Sprinto initiates an **initial data sync automatically**.
* Organisation, user, and cluster data are fetched.
* Compliance checks and controls begin evaluating your setup.
* Access review workflows can be configured using the synced data.

**Note:** It may take up to 24 hours for all data to fully reflect in Sprinto.

***

### Troubleshooting

#### 1. Insufficient Permissions (403 Error)

* Ensure the API key has **Organisation Read Only** role.
* Confirm the user creating the key has **Organisation Owner** access.

#### 2. Authentication Failures (401 Error)

* Verify that the Public and Private keys are correct.
* Regenerate the API key if the private key was lost.

#### 3. API Access Issues

* Ensure Atlas Admin API access is not blocked by IP restrictions.
* Confirm your IP Access List configuration allows API calls.

#### 4. No Data Syncing

* Wait up to 24 hours for initial sync.
* Verify API key permissions and organisation scope.

***

### Additional Notes

* MongoDB Atlas also supports **OAuth (Service Accounts)** for authentication, which provides improved security and automatic token rotation.
* Sprinto currently uses API key-based authentication for this integration.
* The integration follows a **read-only access model** and does not modify any resources in your Atlas environment.

***

### Support

Please contact [Sprinto Support](mailto:www.support@sprinto.com) If you have any queries related to the integration or need any assistance.


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.sprinto.com/integrations/overview/mongodb-atlas-integration.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.