Limit failed logins from MongoDB shell

I have MongoDB community installed on VMs and I was wondering if there is there a way to lock user accounts after x number of failed logins on MongoDB Community when using SCRAM authentication?

I looked in the documentation and didn’t see anything on this topic.

Any help would be appreciated.

Hi @tapiocaPENGUIN,

There is no built in way to do it whithin the server.

What our customers usually do is integrating LDAP to fulfill this task using enterprise version

But I am not certain why do you need this? Do you think someone will brute force your password? Why would anyone have access to do so?

Anyway you can crawl the logs with script and remove user permissions if necessary affectively locking him…

Thanks
Pavel

Thanks Pavel for the answer.

Our security team proposed the question so I wanted to verify.

1 Like

This topic was automatically closed 5 days after the last reply. New replies are no longer allowed.