How to reload mongod when TLS certificate is renewed

Hello. I have a setup where the TLS certificate (and private key) are replaced every few months (for renewal purposes). I was wondering how I would go about reloading the TLS certificate and key so mongod used the new one. It doesn’t seem that SIGHUP or SIGUSR1 (the standard signals for rehashing TLS certificates) would work. I would like to avoid restarting mongod if possible.

I don’t think it is possible to update certificates without mongod bounce
You have to do it rolling restart method
Please check these links

https://jira.mongodb.org/browse/SERVER-10962
https://docs.mongodb.com/manual/tutorial/rotate-x509-membership-certificates/

1 Like

Oh, that’s not very good. I don’t have a very complex system going on. Just a single mongod running on a single server.

This topic was automatically closed 5 days after the last reply. New replies are no longer allowed.