[DOCS-2338] Please document procedure to remove authentication Created: 03/Dec/13 Updated: 20/Feb/14 Resolved: 20/Feb/14 |
|
| Status: | Closed |
| Project: | Documentation |
| Component/s: | manual |
| Affects Version/s: | None |
| Fix Version/s: | v1.3.1 |
| Type: | Task | Priority: | Minor - P4 |
| Reporter: | Gregor Macadam | Assignee: | Bob Grabar |
| Resolution: | Done | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||||||
| Participants: | |||||||||
| Days since reply: | 9 years, 51 weeks, 6 days ago | ||||||||
| Description |
|
Process to enable authentication is documented : Process to disable authentication is not. |
| Comments |
| Comment by Sam Kleinman (Inactive) [ 20/Feb/14 ] |
|
Disabling authentication (i.e. starting without keyFile or auth) is different from removing the credentials. The revised authentication document for 2.6 is more clear on the function of auth which I think resolves the underlying question. The process for removing credentials from a system without authentication enabled is essentially orthogonal to enabling/disabling auth, and once auth is disabled it's not harmful to have unused credentials in a system that does not have auth enabled.. I'm going to go ahead and close this ticket because I think that we've resolved the underlying issue. |
| Comment by Bob Grabar [ 20/Feb/14 ] |
|
Hi Srinivasa, Just double-checking: you did not actually remove the admin database, right? That's a system database that should not be removed. What did the warning message say? Bob |
| Comment by Srinivasa Kempapura Padmanabha [ 03/Dec/13 ] |
|
Yes, this is very much essential. I was trying for back out plan, in that I enable the authentication in mongodb and modified application so that it will get authenticated before performing any operations on the database side. But, what if the this whole procedure fails, we need to put that back to normal working. As per my understand, I thought of restarting mongodb without authentication ( that is not to include keyFile option) though is fine but not documented and then remove the admin database (remember i have added all database users to admin database ) or remove database users.But, I stick to remove database user from admin database. Also when we add users to database and not running mongodb in authentication mode, connecting from script will give warning message before it writes. It doesn't fail to write, rather it warns. Regards, |