Details
The key file is used for authentication in the sharded cluster. Implementing proper file permissions on the key file will prevent unauthorized access to it.
Rationale:
Protecting the key file strengthens authentication in the sharded cluster and prevents unauthorized access to the MongoDB database.
Solution
Set the keyFile ownership to mongodb user and remove other permissions by executing these commands:
chmod 600 /keyfile
sudo chown mongodb:mongodb /keyfile
Default Value:
Not configured
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Unix.