What is the option passed to mongod (including argument) to specify that X.509 certificates will be used for internal authentication?
This is one of the faq mongoDB security for the mongoDB interview.
mkdir -p rs1/db rs2/db rs3/db $ mongodb --replSet myReplSet --dbpath ./rs1/db -logpath ./rs1/mongod.log --port 27017 --fork --sslMode requireSSL --clusterAuthMode x509 --sslPEMKeyFile member1.pem
$ mongodb --replSet myReplSet --dbpath ./rs2/db -logpath ./rs2/mongod.log --port 27018 --fork --sslMode requireSSL --clusterAuthMode x509 --sslPEMKeyFile member2.pem
$ mongodb --replSet myReplSet --dbpath ./rs3/db -logpath ./rs3/mongod.log --port 27019 --fork --sslMode requireSSL --clusterAuthMode x509 --sslPEMKeyFile member3.pem
Ans: –clusterAuthMode x509
Answer:
–clusterAuthMode x509 is passed to mongod to specify that X.509 certificates will be used for internal authentication.
Reference
For more details, you can visit docs.mongodb.com for MongoDB security.
Thanks for visiting this post for MongoDB security FAQ. You can also visit MongoDB Tutorial Listing page for more articles on MongoDB document-oriented database.
Happy Learning 🙂 for faq MongoDB security related things.
Your suggestions are welcome to encourage us to write further. Happy Learning 🙂
