Security

MongoDB provides various features, such as authentication, access control, encryption, to secure your MongoDB deployments. Some key security features include:

Authentication Authorization TLS/SSL Enterprise Only

Authentication

SCRAM-SHA-1

x.509

Role-Based Access Control

Enable Auth

Manage Users and Roles

Transport Encryption

Configure mongod and mongos for TLS/SSL

TLS/SSL Configuration for Clients

Kerberos Authentication

LDAP Proxy Authority Authentication

Encryption at Rest

Auditing

Security Checklist

MongoDB also provides the Security Checklist for a list of recommended actions to protect a MongoDB deployment.