First, super Administrator create and turn on login verification
If MongoDB is to turn on login verification, you must create a super administrator before you turn on login verification, or you will not be able to log in to the database!
For example, create a Super admin admin, Associate to the admin database, and set the role to root (super Admin)
First, go to the target library Admin,use admin
Then, enter the instruction db.createuser ({User: "admin", pwd: "123456", roles:["root"})
After you have created the administrator user, you can turn on login verification, enter the configuration file c:\MongoDB\config\mongodb.conf,
Add auth=true can turn on login verification, if you want to turn on Telnet, you need to add bind_ip=0.0.0.0, modify the Write restart MongoDB service.
Once the service is turned on, you can log in through the administrator,
Second, add the database of ordinary users
If you want to add the logged-on user to the specified database, first switch to the database, then create the user, the user needs to bind the database, and the role
Commonly used role Description:
READ: Allows the user to read the specified database
ReadWrite: Allows the user to read and write to the specified database
DbAdmin: Allows the user to perform administrative functions in the specified database, such as index creation, deletion, viewing statistics, or accessing System.profile
Useradmin: Allows the user to write to the System.users collection to create, delete, and manage users in the specified database
Clusteradmin: Available only in the admin database, giving the user administrative privileges on all shards and replica set related functions.
Readanydatabase: Only available in the Admin database, giving users read access to all databases
Readwriteanydatabase: Only available in the Admin database, giving users read and write access to all databases
Useradminanydatabase: Only available in the Admin database, giving the user useradmin permissions for all databases
Dbadminanydatabase: Only available in the Admin database, giving the user dbadmin permissions for all databases.
Root: Available only in the admin database. Super account, Super privilege
For example, create a test user with read and write permissions to the test database
First, go to the target library Test,use test
Then, enter the instruction db.createuser ({User: "Test", pwd: "123456", Roles:[{role: "ReadWrite", DB: "Test"}]})
Third, view all users
Switch to the admin database with Super Admin login, db.system.users.find () to view all the information of all users,
View all user profiles via directive Db.system.users.find ({},{user:1,roles:1,_id:0})
Iv. Modification of users
4.1 Modifying user passwords
For example, modify the password for user test to 123
First, go to the target library Test,use test
Then, enter the instruction Db.changeuserpassword ("Test", "123")
4.2 Modifying user Roles
To add a user role
For example, add ReadWrite permissions to the user test
First, go to the target library Test,use test
Then, enter the instruction db.grantrolestouser ("test", [{role: "ReadWrite", DB: "Test"}])
Remove a user Role
For example, remove the ReadWrite permission for the user test
First, go to the target library Test,use test
Then, enter the instruction db.revokerolesfromuser ("test", [{role: "ReadWrite", DB: "Test"}])
V. Delete users
For example, delete the user test
First, go to the target library Test,use test
Then, enter the instruction db.dropuser ("test")
Login verification and user management of MongoDB Foundation