Thanks for your reply, but unfortunately it doesn’t help.
Without permission, the result is:
db.system.new_users.drop()
uncaught exception: Error: drop failed: {
"ok" : 0,
"errmsg" : "not authorized on admin to execute command { drop: \"system.new_users\", lsid: { id: UUID(\"39647226-1638-45dc-ba17-0edffeab4f2c\") }, $clusterTime: { clusterTime: Timestamp(1679982428, 1), signature: { hash: BinData(0, 29228B39097FD3021D97D56D945171720FEDF25C), keyId: 7158403034257555467 } }, $db: \"admin\" }",
"code" : 13,
"codeName" : "Unauthorized",
"operationTime" : Timestamp(1679982429, 5)
}
With the appropriate permission, it goes further but still won’t do the job:
pc:PRIMARY> db.updateRole("cleanup",{privileges: [ { resource : { "db" : "admin", "collection" : "system.new_users" }, actions: [ "find", "dropCollection" ] }], roles: [ "root" ]})
pc:PRIMARY> db.system.new_users.drop()
uncaught exception: Error: drop failed: {
"ok" : 0,
"errmsg" : "can't drop system collection admin.system.new_users",
"code" : 20,
"codeName" : "IllegalOperation",
"operationTime" : Timestamp(1679982508, 5)
}
That would have been too easy…