- Security >
- Authentication >
- Authentication Mechanisms >
- MONGODB-CR
MONGODB-CR¶
Deprecated
As of MongoDB 3.6, MONGODB-CR
authentication mechanism is
deprecated. If you have not upgraded your MONGODB-CR
authentication
schema to SCRAM, see Upgrade to SCRAM.
MONGODB-CR
is a challenge-response mechanism that authenticates users
through passwords. MONGODB-CR
verifies supplied user credentials against
the user’s name
, password
and authentication database
. The authentication database is the database where the
user was created, and the user’s database and the user’s name together serve to
identify the user.
MONGODB-CR
User Credentials and SCRAM¶
Changed in version 3.0.
MongoDB no longer defaults to MONGODB-CR
and instead uses
Salted Challenge Response Authentication Mechanism (SCRAM) as the default authentication mechanism.
After you upgrade a deployment that already has MongoDB Challenge
and Response (MONGODB-CR
) user credentials, if you have not
upgraded the authentication schema, you can continue to use
MONGODB-CR
:
- For older versions of drivers that do not support MongoDB 3.0+
features, you will continue to use
MONGODB-CR
. - For drivers that support MongoDB 3.0+ features (see
Driver Compatibility Changes), you can explicitly specify
MONGODB-CR
as the authentication mechanism to useMONGODB-CR
. Otherwise, the credentials are temporarily converted to use SCRAM during authentication to provide improved protection from passive eavesdroppers; this temporary conversion does not affect how the credentials are stored.
Note
As of MongoDB 3.6, MONGODB-CR
authentication mechanism is
deprecated. If you have not upgraded your MONGODB-CR
authentication
schema to SCRAM, see Upgrade to SCRAM.