While mongocryptd is always distributed with the shell, the automatic encryption functionality it provides should only be available when the shell is connected to a MongoDB Enterprise Server or Atlas (Atlas also identifies itself as Enterprise).

When not connected to Enterprise Server or Atlas, we should fail gracefully and display an error message (to be reviewed with the legal team – massimiliano.marcon will do that).

Notes

• This is not handled automatically by the driver so we should figure out how to do it on the shell side.
• I am not sure when mongocryptd is actually launched
• We could either prevent the user from configuring automatic encryption when not connected to enterprise/atlas (https://docs.mongodb.com/manual/reference/security-client-side-automatic-json-schema/), try to prevent mongocryptd from starting, or both.