Hi,
I have version 4.4.4 running with authorization enabled.
After creating the admin user I try to limit the access from local host only. But there will no restrictions added.
show users { "_id" : "admin.gott", "userId" : UUID("53c1829c-af0b-4ca6-8370-ef0b66502e3d"), "user" : "gott", "db" : "admin", "roles" : [ { "role" : "root", "db" : "admin" } ], "mechanisms" : [ "SCRAM-SHA-256" ] }
Then call:
db.runCommand({updateUser:“gott”,authenticationRestrictions:[{clientSource:[“::1”,“127.0.0.0/7”]}]})
{ “ok” : 1 }
But after call usersInfo again the authentication restrictions are lost.
db.runCommand({usersInfo: 1})
{
“users” : [
{
“_id” : “admin.gott”,
“userId” : UUID(“53c1829c-af0b-4ca6-8370-ef0b66502e3d”),
“user” : “gott”,
“db” : “admin”,
“roles” : [
{
“role” : “root”,
“db” : “admin”
}
],
“mechanisms” : [
“SCRAM-SHA-256”
]
}
],
“ok” : 1
}