Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-39820

Add the client IP address to the successful authentication log message

    • Minor Change
    • v4.0, v3.6, v3.4
    • Security 2019-03-25, Security 2019-04-08

      It would be much easier for customers to produce a report of authentication successes and failures with the IP address if the authentication success message in the log file included the IP address.

      At the moment, a successful authentication log message does not include the IP address:

      2019-02-25T16:27:23.805+0000 I ACCESS   [conn63538] Successfully authenticated as principal admin on admin
      

      While the failure authentication log message does include the IP address

      2019-02-25T16:23:12.863+0000 I ACCESS   [conn63518] SCRAM-SHA-1 authentication failed for admin on admin from client 206.252.195.126:54790 ; AuthenticationFailed: SCRAM-SHA-1 authentication failed, storedKey mismatch
      

      Adding the IP address to the success message would allow customer to easily monitor for situations such as "Were there any successful authentication requests from IPs outside of those I believe I have whitelisted in my firewall?".

            Assignee:
            jonathan.reams@mongodb.com Jonathan Reams
            Reporter:
            cailin.nelson@mongodb.com Cailin Nelson (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            14 Start watching this issue

              Created:
              Updated:
              Resolved: