mongodb 3.4 添加分片提示未授权

Question

16.86K 浏览2021/06/07分片

0

loongw513029 14 2021/06/01 0条评论

mongos> use admin
switched to db admin
mongos> show dbs
admin 0.000GB
config 0.000GB
mongos> db.createUser({user:’madmin’,pwd:’Sztvis@789′,roles:[{role:’userAdminAnyDatabase’,db:’admin’}]})
Successfully added user: {
“user” : “madmin”,
“roles” : [
{
“role” : “userAdminAnyDatabase”,
“db” : “admin”
}
]
}
mongos> db.auth(‘madmin’,’Sztvis@789′)
1
mongos> sh.addShard(“myreplset01/192.168.1.233:27217,192.168.1.233:27218,192.168.1.233:27219”)
{
“code” : 13,
“ok” : 0,
“errmsg” : “not authorized on admin to execute command { listDatabases: 1, nameOnly: true }”
}

xiaoxu 已回答的问题 2021/06/07

3 答案

xiaoxu · Answer 1 · 2021-06-07T01:37:27+00:00

userAdminAnyDatabase对local与config没有权限，需要改成dbAdminAnyDatabase

db.getSiblingDB(‘admin’).updateUser(‘madmin’,{roles:[{role:”dbAdminAnyDatabase”,db:”admin”},{role:”clusterAdmin”,db:”admin”}]})

loongw513029 · Answer 2 · 2021-06-02T08:13:57+00:00

0

jiakunpeng 160 发布 2021/06/02 0 条评论

权限问题。

loongw513029 未选择答案 2021/06/02

xiaoxu · Answer 3 · 2021-06-02T14:50:39+00:00

权限不够导致，你需要clusteradmin权限来。

db.updateUser(‘madmin’,{roles:[{role:”userAdminAnyDatabase”,db:”admin”},{role:”clusterAdmin”,db:”admin”}]})

由于版本不一样，报错不一样，主要还是权限问题，

mongos> sh.addShard(“myreplset01/192.168.1.233:27217,192.168.1.233:27218,192.168.1.233:27219”)
{
“ok” : 0,
“errmsg” : “not authorized on admin to execute command { addShard: \”myreplset01/192.168.1.233:27217,192.168.1.233:27218,192.168.1.233:27219\”, lsid: { id: UUID(\”0af413b2-47ff-48ce-88ae-a7bc28ebb5fa\”) }, $clusterTime: { clusterTime: Timestamp(1622615393, 1), signature: { hash: BinData(0, 2B78D894A0133C5DCE95A881A65B04744BD7B03B), keyId: 6925300564804763650 } }, $db: \”admin\” }”,
“code” : 13,
}

mongos> db.updateUser(‘madmin’,{roles:[{role:”userAdminAnyDatabase”,db:”admin”},{role:”clusterAdmin”,db:”admin”}]})

mongos> sh.addShard(“myreplset01/192.168.1.233:27217,192.168.1.233:27218,192.168.1.233:27219”)
{
“shardAdded” : “myreplset01”,
“ok” : 1,
“operationTime” : Timestamp(1622615435, 4),
“$clusterTime” : {
“clusterTime” : Timestamp(1622615435, 4),
“signature” : {
“hash” : BinData(0,”lHuBReFb4LKOPpvaj8Luz7IQr9A=”),
“keyId” : NumberLong(“6925300564804763650”)
}
}
}

mongos> db.updateUser(‘madmin’,{roles:[{role:”userAdminAnyDatabase”,db:”admin”},{role:”clusterAdmin”,db:”admin”}]})
mongos> sh.addShard(“myreplset01/192.168.1.233:27217,192.168.1.233:27218,192.168.1.233:27219”)
{
“code” : 13,
“ok” : 0,
“errmsg” : “not authorized on admin to execute command { listDatabases: 1, nameOnly: true }”
}
mongos> db.auth(‘madmin’,’Sztvis@789′)
1
mongos> sh.addShard(“myreplset01/192.168.1.233:27217,192.168.1.233:27218,192.168.1.233:27219”)
{
“code” : 13,
“ok” : 0,
“errmsg” : “not authorized on admin to execute command { listDatabases: 1, nameOnly: true }”
}
mongos>

似乎仍任不起作用
use admin
db.system.users.find().pretty()
验证你这个用户roles
更新成功没,如果没有成功,执行如下操作
–登录mongos的用户必须有权限。
db.getSiblingDB(‘admin’).updateUser(‘madmin’,{roles:[{role:”userAdminAnyDatabase”,db:”admin”},{role:”clusterAdmin”,db:”admin”}]})

mongodb 3.4 添加分片提示未授权

3 答案

回顶部

关注微信：mongoing-mongoing
复制微信号

提交工单咨询

3 答案

回顶部

关注微信：mongoing-mongoing复制微信号

提交工单咨询

关注微信：mongoing-mongoing
复制微信号