CIS MongoDB 3.6L1 Unix V1.0.0

Details The key file is used for authentication in the sharded cluster. Implementing proper file permissions on the key file...

Details This setting ensures that all clients, users, and/or servers are required to authenticate prior to being granted access to...

Details Authentication is enabled in a sharded cluster when the certificate or key files are created and configured for all...

Details Use TLS or SSL to protect all incoming and outgoing connections. This should include using TLS or SSL to...

Details MongoDB Enterprise supports auditing of various operations. When enabled, the audit facility, by default, records all auditable operations as...

Details MongoDB database files need to be protected using file permissions. Rationale: This will restrict unauthorized users from accessing the...

Details The SystemLog.quiet option stops logging of information such as: connection events authentication events replication sync activities evidence of some...

Details MongoDB should not be set to bypass authentication via the localhost exception. The localhost exception allows the user to...

Details The MongoDB service should not be run using a privileged account such as ‘root’ because this unnecessarily exposes the...

Details Ensuring that MongoDB runs in a trusted network environment involves limiting the network interfaces on which MongoDB instances listen...