SCRAM

On this page

此页面

NOTE

Starting in version 4.0, MongoDB removes support for the deprecated MongoDB Challenge-Response (MONGODB-CR) authentication mechanism.

If your deployment has user credentials stored in MONGODB-CR schema, you must upgrade to SCRAM before you upgrade to version 4.0. For information on upgrading to SCRAM, see .

Salted Challenge Response Authentication Mechanism (SCRAM) is the default authentication mechanism for MongoDB. SCRAM is based on the IETF standard that defines best practices for implementation of challenge-response mechanisms for authenticating users with passwords.

Using SCRAM, MongoDB verifies the supplied user credentials against the user’s , and . The authentication database is the database where the user was created, and together with the user’s name, serves to identify the user.

注意 从4.0版本开始，MongoDB删除了对已弃用的MongoDB质询-响应(MONGODB-CR)身份验证机制的支持。 如果您的部署有存储在MONGODB-CR模式中的用户凭证，您必须在升级到SCRAM_之前_升级到MongoDB4.0版本。有关升级到SCRAM的信息，请参阅 。 严肃的询问响应身份验证机制(SCRAM)是MongoDB的默认身份验证机制。SCRAM基于IETF 标准，该标准定义了实现询问-响应机制的最佳实践，用于对用户进行密码验证。 使用SCRAM，MongoDB验证所提供的用户凭证 , 和 。身份验证数据库是创建用户的数据库，它与用户名一起用于标识用户。

Features

MongoDB’s implementation of SCRAM provides:

• A tunable work factor (i.e. the iteration count),

• Per-user random salts, and

• Authentication of the server to the client as well as the client to the server.

特征

MongoDB的SCRAM实现提供:

• 可调的工作因素(如：迭代计数)，

• 每个用户随机salts，和

• 服务器对客户端的认证，以及客户对服务器的认证。

SCRAM Mechanisms

MongoDB supports the following SCRAM mechanisms:

SCRAM机制

MongoDB支持如下SCRAM机制：

Driver Support

To use SCRAM, you must upgrade your driver if your current driver version does not support SCRAM.

The minimum driver versions that support SCRAM are:

驱动支持

如果您当前的驱动程序版本不支持SCRAM，您必须升级驱动程序才能使用SCRAM。 支持SCRAM的最小驱动程序版本如下所示:

Additional Information

其它信息

译者：管祥青