-
Type: Bug
-
Resolution: Unresolved
-
Priority: Minor - P4
-
None
-
Affects Version/s: None
-
Component/s: CLI Module
-
Labels:None
-
5
-
Needed
-
-
Iteration Johannesburg
Problem Description
MongoDB uses the AuthN_id from kerberos ccache (default principal), and does not do any canonicalization. So, we can use the AuthN_ID as AuthZ_id and Mongo shell dont need to accept a --username argument. This adds to user confusion in kerberos environemnts.
Steps to Reproduce
Start a mongod instance with kerberos support.
connect to mongod server using mongo shell.. Here you need to pass --username argument.
Expected Results
Ideally we dont need to pass --username argument when doing kerberos authentication.