Sfrgttk

OA final episode explanation

Is every set a filtered colimit of finite sets?

Calculate Levenshtein distance between two strings in Python

How to make payment on the internet without leaving a money trail?

What is GPS' 19 year rollover and does it present a cybersecurity issue?

Is this food a bread or a loaf?

Why airport relocation isn't done gradually?

Is Fable (1996) connected in any way to the Fable franchise from Lionhead Studios?

Are objects structures and/or vice versa?

Why was the "bread communication" in the arena of Catching Fire left out in the movie?

New order #4: World

Could a US political party gain complete control over the government by removing checks & balances?

When blogging recipes, how can I support both readers who want the narrative/journey and ones who want the printer-friendly recipe?

Where to refill my bottle in India?

Why is the design of haulage companies so “special”?

Is it legal to have the "// (c) 2019 John Smith" header in all files when there are hundreds of contributors?

What does "enim et" mean?

"listening to me about as much as you're listening to this pole here"

What happens when a metallic dragon and a chromatic dragon mate?

I’m planning on buying a laser printer but concerned about the life cycle of toner in the machine

Does a dangling wire really electrocute me if I'm standing in water?

Pristine Bit Checking

What do you call something that goes against the spirit of the law, but is legal when interpreting the law to the letter?

Patience, young "Padovan"

how to generate the root CA.pem in mongodb for configuring the ssl certificates?

Issues with self signed certificates, SSL and MongoDBWho can explain mongodb with ssl?MongoDB - Unable to change mongodb storage engine to WiredTigerMongoError: self signed certificate in certificate chainMongo exception: connect failed on rebootHow can I setup replication with the DNS name instead of the Server NameHow to change default mongo port on a bitnami instanceSSLServerHasCertificateAuthority is false but the certificate is signed by a trusted CAChange in bind_ip value is not reflecting3 Node mongo db authentication setup fails

.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty{ margin-bottom:0;
}

0

I am trying to configure the SSL certificates in the MongoDB community edition.

The configuration of my mongod.conf

net:

  port: 27017

  bindIp: 0.0.0.0  # Enter 0.0.0.0,:: to bind to all IPv4 and IPv6 

 addresses or, alternatively, use the net.bindIpAll setting.

  ssl:

    mode: requireSSL

    PEMKeyFile: /etc/ssl/mongodb.pem

    CAFile: /etc/ssl/ca_bundle.crt

    allowConnectionsWithoutCertificates: false

    allowInvalidHostnames: false

    disabledProtocols: TLS1_0,TLS1_1

Here what I am doing is converting certificate.crt and private.key as mongodb.pem and passing the ca_bundle.crt as CAFile in mongod.conf

I am trying to connect with the server using the command

mongo --ssl --sslPEMKeyFile /etc/ssl/mongodb.pem --sslCAFile /etc/ssl/ca_bundle.crt --host myapptest.tk

Getting the error like

MongoDB shell version v4.0.8

connecting to: mongodb://myapptest.tk:27017/?gssapiServiceName=mongodb

2019-04-04T19:57:40.401+0000 E NETWORK [js] SSL peer certificate validation failed: unable to get local issuer certificate

2019-04-04T19:57:40.402+0000 E QUERY [js] Error: couldn't connect to server myapptest.tk:27017, connection attempt failed: SSLHandshakeFailed: SSL peer certificate validation failed: unable to get local issuer certificate :

connect@src/mongo/shell/mongo.js:343:13

@(connect):2:6

exception: connect failed

I want to know, how to create the root_CA.pem file and pass it as --sslCAFile?

where can found the ca.pem file in MongoDB?

Could anybody suggest me how to configure the SSL certificates in MongoDB?

mongodb ssl

share|improve this question

edited 54 mins ago

GayathriB

asked 1 hour ago

GayathriBGayathriB

12

New contributor

GayathriB is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

add a comment | 

0

I am trying to configure the SSL certificates in the MongoDB community edition.

The configuration of my mongod.conf

net:

  port: 27017

  bindIp: 0.0.0.0  # Enter 0.0.0.0,:: to bind to all IPv4 and IPv6 

 addresses or, alternatively, use the net.bindIpAll setting.

  ssl:

    mode: requireSSL

    PEMKeyFile: /etc/ssl/mongodb.pem

    CAFile: /etc/ssl/ca_bundle.crt

    allowConnectionsWithoutCertificates: false

    allowInvalidHostnames: false

    disabledProtocols: TLS1_0,TLS1_1

Here what I am doing is converting certificate.crt and private.key as mongodb.pem and passing the ca_bundle.crt as CAFile in mongod.conf

I am trying to connect with the server using the command

mongo --ssl --sslPEMKeyFile /etc/ssl/mongodb.pem --sslCAFile /etc/ssl/ca_bundle.crt --host myapptest.tk

Getting the error like

MongoDB shell version v4.0.8

connecting to: mongodb://myapptest.tk:27017/?gssapiServiceName=mongodb

2019-04-04T19:57:40.401+0000 E NETWORK [js] SSL peer certificate validation failed: unable to get local issuer certificate

2019-04-04T19:57:40.402+0000 E QUERY [js] Error: couldn't connect to server myapptest.tk:27017, connection attempt failed: SSLHandshakeFailed: SSL peer certificate validation failed: unable to get local issuer certificate :

connect@src/mongo/shell/mongo.js:343:13

@(connect):2:6

exception: connect failed

I want to know, how to create the root_CA.pem file and pass it as --sslCAFile?

where can found the ca.pem file in MongoDB?

Could anybody suggest me how to configure the SSL certificates in MongoDB?

mongodb ssl

share|improve this question

edited 54 mins ago

GayathriB

asked 1 hour ago

GayathriBGayathriB

12

New contributor

GayathriB is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

add a comment | 

I am trying to configure the SSL certificates in the MongoDB community edition.

The configuration of my mongod.conf

net:

  port: 27017

  bindIp: 0.0.0.0  # Enter 0.0.0.0,:: to bind to all IPv4 and IPv6 

 addresses or, alternatively, use the net.bindIpAll setting.

  ssl:

    mode: requireSSL

    PEMKeyFile: /etc/ssl/mongodb.pem

    CAFile: /etc/ssl/ca_bundle.crt

    allowConnectionsWithoutCertificates: false

    allowInvalidHostnames: false

    disabledProtocols: TLS1_0,TLS1_1

Here what I am doing is converting certificate.crt and private.key as mongodb.pem and passing the ca_bundle.crt as CAFile in mongod.conf

I am trying to connect with the server using the command

mongo --ssl --sslPEMKeyFile /etc/ssl/mongodb.pem --sslCAFile /etc/ssl/ca_bundle.crt --host myapptest.tk

Getting the error like

MongoDB shell version v4.0.8

connecting to: mongodb://myapptest.tk:27017/?gssapiServiceName=mongodb

2019-04-04T19:57:40.401+0000 E NETWORK [js] SSL peer certificate validation failed: unable to get local issuer certificate

2019-04-04T19:57:40.402+0000 E QUERY [js] Error: couldn't connect to server myapptest.tk:27017, connection attempt failed: SSLHandshakeFailed: SSL peer certificate validation failed: unable to get local issuer certificate :

connect@src/mongo/shell/mongo.js:343:13

@(connect):2:6

exception: connect failed

I want to know, how to create the root_CA.pem file and pass it as --sslCAFile?

where can found the ca.pem file in MongoDB?

Could anybody suggest me how to configure the SSL certificates in MongoDB?

mongodb ssl

share|improve this question

edited 54 mins ago

GayathriB

asked 1 hour ago

GayathriBGayathriB

12

New contributor

GayathriB is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

net:

  port: 27017

  bindIp: 0.0.0.0  # Enter 0.0.0.0,:: to bind to all IPv4 and IPv6 

 addresses or, alternatively, use the net.bindIpAll setting.

  ssl:

    mode: requireSSL

    PEMKeyFile: /etc/ssl/mongodb.pem

    CAFile: /etc/ssl/ca_bundle.crt

    allowConnectionsWithoutCertificates: false

    allowInvalidHostnames: false

    disabledProtocols: TLS1_0,TLS1_1

mongo --ssl --sslPEMKeyFile /etc/ssl/mongodb.pem --sslCAFile /etc/ssl/ca_bundle.crt --host myapptest.tk

share|improve this question

edited 54 mins ago

GayathriB

asked 1 hour ago

GayathriBGayathriB

12

New contributor

GayathriB is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

share|improve this question

edited 54 mins ago

GayathriB

asked 1 hour ago

GayathriBGayathriB

12

New contributor

GayathriB is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

asked 1 hour ago

GayathriBGayathriB

12

New contributor

GayathriB is a new contributor to this site. Take care in asking for clarification, commenting, and answering.
Check out our Code of Conduct.

asked 1 hour ago

GayathriBGayathriB

12