Foglight may raise an alarm that there are X days remaining until a SSL/TLS cetificate expires. This means the MongoDB agent is using a certificate that has expired or is about to expire. The PEMKeyFile reference is internal to Foglight’s SSL configuration, not MongoDB itself.
Foglight Agent Manager (FglAM) acts as a secure client to MongoDB. It uses Java SSL/TLS settings to establish trust. If the certificate is expired or not trusted, the agent fails to connect securely.
Foglight does not retrieve the PEM path from MongoDB. Instead, it uses a Java keystore/truststore configured via JVM arguments in baseline.jvmargs.config.
Review the current online MongoDB cartridge documentation for details on setting up a SSL connection using the MongoDB agent.
https://docs.foglight.com/8.0.0/monitoringdatabases/monitoringmongodb/setup
