After spending a few hours mucking about with Kerberos + AD, I’m finally moving on I hope I can still make Tuesday’s deadline! Anyway… I’m watching the lecture “Enabling internal authentication”.
In it, @kirbyk sets up a three node replica set with the following commands. He then proceeds to:
- Initiate the replica set.
- Create a first user, with the localhost bypass.
- Add the other two nodes.
He then proclaims the replica set to be functional and to be using the keyfile for mutual authentication. But are we sure about that? Because none of the mongod processes was started with the --authentication command line parameter.