Show
1. Start a mongod instance:
$ mongod --version
2013-10-02T17:22:46.708+0000 git version: 7e57c5311b0b660cf2df6d3c2cd01245adbafe21
2013-10-02T17:22:46.709+0000 OpenSSL version: OpenSSL 0.9.8y 5 Feb 2013
$ mongod --sslOnNormalPorts --sslPEMKeyFile jstests/libs/server.pem --sslCRLFile jstests/libs/crl.pem --sslCAFile jstests/libs/ca.pem --auth
2. Connect to mongod:
$ mongo --version
MongoDB shell version: 2.5.3-pre-
$ mongo --ssl --sslPEMKeyFile client_invalid.pem
> use $external
> db.addUser({
... user:"CN=client,OU=kerneluser,O=10Gen,L=New York City,ST=New York,C=US",
... roles:[
... {name: 'clusterAdmin', source: 'admin', hasRole: true, 'canDelegate': true},
... {name: 'userAdminAnyDatabase', source: 'admin', hasRole: true, 'canDelegate': true},
... {name: 'readWriteAnyDatabase', source: 'admin', hasRole: true, 'canDelegate': true},
... {name: 'dbAdminAnyDatabase', source: 'admin', hasRole: true, 'canDelegate': true}]});
{
"user" : "CN=client,OU=kerneluser,O=10Gen,L=New York City,ST=New York,C=US",
"roles" : [
{
"name" : "clusterAdmin",
"source" : "admin",
"hasRole" : true,
"canDelegate" : true
},
{
"name" : "userAdminAnyDatabase",
"source" : "admin",
"hasRole" : true,
"canDelegate" : true
},
{
"name" : "readWriteAnyDatabase",
"source" : "admin",
"hasRole" : true,
"canDelegate" : true
},
{
"name" : "dbAdminAnyDatabase",
"source" : "admin",
"hasRole" : true,
"canDelegate" : true
}
]
}
> db.auth({ user:"CN=client,OU=kerneluser,O=10Gen,L=New York City,ST=New York,C=US",
... mechanism:"MONGODB-X509"})
1