[SERVER-59528] Disable use of SCRAM-SHA1 for intra-cluster authentication or user credentials when net.tls.FIPSMode = true Created: 24/Aug/21  Updated: 29/Oct/23  Resolved: 14/Sep/21

Status: Closed
Project: Core Server
Component/s: None
Affects Version/s: None
Fix Version/s: 5.1.0-rc0

Type: Bug Priority: Major - P3
Reporter: Salman Baset Assignee: Sara Golemon
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Depends
Documented
is documented by DOCS-14793 [SERVER] Investigate changes in SERVE... Closed
Backwards Compatibility: Minor Change
Operating System: ALL
Sprint: Security 2021-09-20
Participants:

 Description   

When FIPS mode is enabled, SCRAM-SHA1 should be disabled for intra-cluster authentication or DB user auth.



 Comments   
Comment by Vivian Ge (Inactive) [ 06/Oct/21 ]

Updating the fixversion since branching activities occurred yesterday. This ticket will be in rc0 when it’s been triggered. For more active release information, please keep an eye on #server-release. Thank you!

Comment by Githook User [ 21/Sep/21 ]

Author:

{'name': 'Sara Golemon', 'email': 'sara.golemon@mongodb.com', 'username': 'sgolemon'}

Message: SERVER-59528 Disable SCRAM-SHA-1 by default in FIPS mode
Branch: SERVER-58852
https://github.com/10gen/mongo-enterprise-modules/commit/606008c47a6efa4592707418c86e76226d61a996

Comment by Githook User [ 16/Sep/21 ]

Author:

{'name': 'Sara Golemon', 'email': 'sara.golemon@mongodb.com', 'username': 'sgolemon'}

Message: SERVER-59528 Disable SCRAM-SHA-1 by default in FIPS mode
Branch: matthew.russotto/SERVER-59665
https://github.com/10gen/mongo-enterprise-modules/commit/606008c47a6efa4592707418c86e76226d61a996

Comment by Githook User [ 13/Sep/21 ]

Author:

{'name': 'Sara Golemon', 'email': 'sara.golemon@mongodb.com', 'username': 'sgolemon'}

Message: SERVER-59528 Disable SCRAM-SHA-1 by default in FIPS mode
Branch: master
https://github.com/10gen/mongo-enterprise-modules/commit/606008c47a6efa4592707418c86e76226d61a996

Generated at Thu Feb 08 05:47:28 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.