| Steps To Reproduce: |
1. Start a mongod instance:
$ mongod --version
|
2013-10-02T17:22:46.708+0000 git version: 7e57c5311b0b660cf2df6d3c2cd01245adbafe21
|
2013-10-02T17:22:46.709+0000 OpenSSL version: OpenSSL 0.9.8y 5 Feb 2013
|
$ mongod --sslOnNormalPorts --sslPEMKeyFile jstests/libs/server.pem --sslCRLFile jstests/libs/crl.pem --sslCAFile jstests/libs/ca.pem --auth
|
2. Connect to mongod:
$ mongo --version
|
MongoDB shell version: 2.5.3-pre-
|
$ mongo --ssl --sslPEMKeyFile client_invalid.pem
|
> use $external
|
> db.addUser({
|
... user:"CN=client,OU=kerneluser,O=10Gen,L=New York City,ST=New York,C=US",
|
... roles:[
|
... {name: 'clusterAdmin', source: 'admin', hasRole: true, 'canDelegate': true},
|
... {name: 'userAdminAnyDatabase', source: 'admin', hasRole: true, 'canDelegate': true},
|
... {name: 'readWriteAnyDatabase', source: 'admin', hasRole: true, 'canDelegate': true},
|
... {name: 'dbAdminAnyDatabase', source: 'admin', hasRole: true, 'canDelegate': true}]});
|
{
|
"user" : "CN=client,OU=kerneluser,O=10Gen,L=New York City,ST=New York,C=US",
|
"roles" : [
|
{
|
"name" : "clusterAdmin",
|
"source" : "admin",
|
"hasRole" : true,
|
"canDelegate" : true
|
},
|
{
|
"name" : "userAdminAnyDatabase",
|
"source" : "admin",
|
"hasRole" : true,
|
"canDelegate" : true
|
},
|
{
|
"name" : "readWriteAnyDatabase",
|
"source" : "admin",
|
"hasRole" : true,
|
"canDelegate" : true
|
},
|
{
|
"name" : "dbAdminAnyDatabase",
|
"source" : "admin",
|
"hasRole" : true,
|
"canDelegate" : true
|
}
|
]
|
}
|
> db.auth({ user:"CN=client,OU=kerneluser,O=10Gen,L=New York City,ST=New York,C=US",
|
... mechanism:"MONGODB-X509"})
|
1
|
|