Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-8876

DDL and Authentication Audit Logs

    • Type: Icon: New Feature New Feature
    • Resolution: Duplicate
    • Priority: Icon: Major - P3 Major - P3
    • None
    • Affects Version/s: None
    • Component/s: Security
    • None

      MongoDB should be able to direct information about the following types of events to a text file or other target, for customer use in auditing user activity:

      • DDL operations
        • Create/delete database
        • Create/delete collection
        • Create/delete index
        • Add/remove user
        • Alter user
        • Shard collection?
      • Authentication operations
        • Failed authentication
        • Successful authentication
        • Logout
      • Authorization Operations
        • Access denied for DDL operations
        • Access denied for CRUD operations?
        • Access denied for queries?

      Audit log messages should include the user performing the successful action, a timestamp, and description of the action itself.

            Assignee:
            schwerin@mongodb.com Andy Schwerin
            Reporter:
            schwerin@mongodb.com Andy Schwerin
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved: