Mongos defers user lookup to the config server via the usersInfo command. When this is done for LDAP users, it means that all LDAP searches (and the binds and referrals needed to conduct those searches) are performed on the config server. The metrics tracked during currentOp are therefore reflected on the config server but not on the auth operation on the mongos that dispatched usersInfo on the config server.

We could try to incorporate these metrics from the config server into the parent auth operation on mongos so that all binds, searches, and referrals performed during a given auth attempt are reflected on mongos, regardless of whether they occurred on the mongos or the config server.