Updated on 2023-05-25 GMT+08:00

Default Permission Mechanism

DDS has a series of security enhancements to deal with increasingly severe security challenges. The Community Edition allows you to connect to a database without authentication. In DDS, you must pass the authentication before connecting to the database. Otherwise, the database cannot be used.

  • After a DB instance is created, the system creates the default administrator rwuser. The administrator must be specified by the customer and meet the password complexity requirements.
  • The administrator is used to create and manage user-defined roles and users. The administrator does not have a default password. The password must be specified by the customer and meet the password complexity requirements.

Scenario

During the execution of mongodump and mongorestore, if you back up and restore the entire DB instance, the permission verification fails. This is because user rwuser has limited permissions on the admin and config databases of the DB instance. You need to grant permissions on certain databases and tables to the user.