Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-21378

Add a setParameter that will bypass auth metadata startup validation checks

    • Type: Icon: Bug Bug
    • Resolution: Done
    • Priority: Icon: Major - P3 Major - P3
    • 3.2.9, 3.3.11
    • Affects Version/s: 3.0.0, 3.2.0-rc1
    • Component/s: Security
    • Fully Compatible
    • ALL
    • Security (08/08/16), Security 19 (08/29/16)

      During start up, mongod checks various properties of the auth metadata, and will exit if they fail. However, the checks are done even if auth is not enabled. This denies the user the ability to fix any problems by restarting the mongod without --auth, which is the usual way of dealing with auth metadata problems.

      The advice given in the log messages is to downgrade to 2.6 and run authSchemaUpgrade. However, this is not possible if the storage engine is something other than MMAPv1. (This means this problem is worse in 3.2 than 3.0, since the default engine is WT.) In this case, the user data becomes completely inaccessible with no workaround to access it.

            Assignee:
            haikinh.hoang@mongodb.com Kinh Hoang
            Reporter:
            kevin.pulo@mongodb.com Kevin Pulo
            Votes:
            0 Vote for this issue
            Watchers:
            12 Start watching this issue

              Created:
              Updated:
              Resolved: