[SERVER-17507] MongoDB3 enterprise AuditLog Created: 07/Mar/15  Updated: 18/Sep/15  Resolved: 09/Mar/15

Status: Closed
Project: Core Server
Component/s: Security
Affects Version/s: 3.0.0
Fix Version/s: 3.0.1, 3.1.0

Type: Bug Priority: Major - P3
Reporter: Cory Morales Assignee: Amalia Hawkins
Resolution: Done Votes: 0
Labels: ET, MTC
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Related
related to SERVER-17516 Add audit log messages for using inco... Open
Backwards Compatibility: Fully Compatible
Operating System: ALL
Backport Completed:
Steps To Reproduce:

1. In your mongoDB config yaml set up audit logging like so
security:
authorization: enabled
auditLog:
destination: file
format: JSON
path: "C:/data/db/auditLog.json"
filter: '

{ atype: "authenticate"}

'

2.) db.auth('','') with incorrect credentials and see that the failure is not logged in the AuditLog like it was before

Sprint: Security 1 04/03/15
Participants:

 Description   

The AuditLog is not logging authentication failures in 3.0 enterprise and only logging the successes. This was working fine in version 2.6 enterprise.



 Comments   
Comment by Githook User [ 09/Mar/15 ]

Author:

{u'username': u'hawka', u'name': u'Amalia Hawkins', u'email': u'amalia.hawkins@10gen.com'}

Message: SERVER-17507: Set SASL conversation isDone correctly on authentication failure.

(cherry picked from commit cb126b88afd72a2bcfa225e21870f7eaa4fffc9d)
(cherry picked from commit 726e5d054e5fe63201a6d06eab615a8ea4af06f4)
Branch: v3.0
https://github.com/mongodb/mongo/commit/5e19cde316e4493dc2548d239cdf7763683e7897

Comment by Amalia Hawkins [ 09/Mar/15 ]

Thanks for bringing this to our attention!

Comment by Githook User [ 09/Mar/15 ]

Author:

{u'username': u'hawka', u'name': u'Amalia Hawkins', u'email': u'amalia.hawkins@10gen.com'}

Message: SERVER-17507: Set SASL conversation isDone correctly on authentication failure.
Branch: master
https://github.com/mongodb/mongo/commit/cb126b88afd72a2bcfa225e21870f7eaa4fffc9d

Generated at Thu Feb 08 03:44:43 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.