• On-Prem MongoDB Management Service >
• Authentication Requirements

Authentication Requirements

On-Prem MongoDB Management Service requires elevated privileges to collect complete data from MongoDB 2.4 instances with authentication enabled.

The following table lists the commands needed to grant the required permissions to the agent user. For an explanation of what each privilege role means, see: User Privilege Roles in MongoDB.

Important

To properly configure the agent user on a sharded cluster, you must create the user on the mongos and on each shard’s replica set primary.

This creates a local admin database with local credentials for each shard. See Sharded Cluster Security for a detailed discussion of access control privileges in sharded clusters.

	Single Server: in a mongo shell connected to the server,	MongoDB Deployment: in a mongo shell connected to either the replica set primary or a mongos.
MMS Monitoring	copy use admin db.addUser( { user: "agent", pwd: "Moon1234", roles: [ "clusterAdmin", "readAnyDatabase" ] } )	copy use admin db.addUser( { user: "agent", pwd: "Moon1234", roles: [ "clusterAdmin", "readAnyDatabase" ] } )
MMS Monitoring with Database Profiling	copy use admin db.addUser( { user: "agent", pwd: "Moon1234", roles: [ "clusterAdmin", "readAnyDatabase", "dbAdminAnyDatabase" ] } )	copy use admin db.addUser( { user: "agent", pwd: "Moon1234", roles: [ "clusterAdmin", "readAnyDatabase", "dbAdminAnyDatabase" ] } )
MMS Monitoring without dbSats	copy use admin db.addUser( { user: "agent", pwd: "Moon1234", roles: [ "clusterAdmin", ] } )	copy use admin db.addUser( { user: "agent", pwd: "Moon1234", roles: [ "clusterAdmin", ] } )

←   User and Environment Management On-Prem MongoDB Management Service Administration Interface  →

© MongoDB, Inc 2008-present. MongoDB, Mongo, and the leaf logo are registered trademarks of MongoDB, Inc.