Add audit log messages for using incorrect auth mechanisms.

XMLWordPrintableJSON

    • Server Security
    • None
    • 3
    • None
    • None
    • None
    • None
    • None
    • None
    • None

      We should investigate whether we want to log to the audit log when a user attempts to authenticate with a nonexistent auth mechanism, for example:

      > db.auth({user:"amalia", pwd:"123456", mechanism:"fake"});
      

      This currently does not log to the audit log, and we may wish to change that behavior.

              Assignee:
              [DO NOT USE] Backlog - Security Team
              Reporter:
              Amalia Hawkins (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated: