• Security >
• Authentication >
• Authentication Mechanisms >
• MONGODB-CR

MONGODB-CR

Deprecated

As of MongoDB 3.6, MONGODB-CR authentication mechanism is deprecated. If you have not upgraded your MONGODB-CR authentication schema to SCRAM, see Upgrade to SCRAM.

MONGODB-CR is a challenge-response mechanism that authenticates users through passwords. MONGODB-CR verifies supplied user credentials against the user’s name, password and authentication database. The authentication database is the database where the user was created, and the user’s database and the user’s name together serve to identify the user.

MONGODB-CR User Credentials and SCRAM

Changed in version 3.0.

MongoDB no longer defaults to MONGODB-CR and instead uses Salted Challenge Response Authentication Mechanism (SCRAM) as the default authentication mechanism.

After you upgrade a deployment that already has MongoDB Challenge and Response (MONGODB-CR) user credentials, if you have not upgraded the authentication schema, you can continue to use MONGODB-CR:

• For older versions of drivers that do not support MongoDB 3.0+ features, you will continue to use MONGODB-CR.
• For drivers that support MongoDB 3.0+ features (see Driver Compatibility Changes), you can explicitly specify MONGODB-CR as the authentication mechanism to use MONGODB-CR. Otherwise, the credentials are temporarily converted to use SCRAM during authentication to provide improved protection from passive eavesdroppers; this temporary conversion does not affect how the credentials are stored.

Note

As of MongoDB 3.6, MONGODB-CR authentication mechanism is deprecated. If you have not upgraded your MONGODB-CR authentication schema to SCRAM, see Upgrade to SCRAM.

←   SCRAM x.509  →

© MongoDB, Inc 2008-present. MongoDB, Mongo, and the leaf logo are registered trademarks of MongoDB, Inc.