mongodump and mongorestore with SSL

mongodb ssl mongodump
10,533

Solution 1

Add this option to the command-line:

--sslAllowInvalidHostnames

Full connection sample:

mongo --host 192.168.99.100 --username luke --password skywalker --authenticationDatabase admin --ssl --sslCAFile rootCA.pem --sslPEMKeyFile me.pem --sslAllowInvalidHostnames

Solution 2

First check your logs at path /var/log/mongodb/mongod.log

Also there is default path of SSL Certificates. And for unix based systems given an SSL certificate located at /etc/ssl/mongodb.pem

As per my understanding for this problem, i would say certificate path needs to be checked. SSL certificate is not located in your windows environment. Try adding full path of certificate. Also look into this https://docs.mongodb.com/manual/tutorial/configure-ssl-clients/

Happy coding

Share:
10,533

Related videos on Youtube

CallMeLaNN
Author by

CallMeLaNN

.Net Expertise

Updated on June 04, 2022

Comments

  • CallMeLaNN
    CallMeLaNN about 2 years

    Getting mongodump and mongorestore work with security quite troublesome.

    I have mongod v3.4.1 with requireSSL running at 192.168.99.100. It is IP address of VirtualBox docker machine running on my Windows. It is just for testing of-cause.

    The instance already configured to use TLS/SSL both server and client signed with the same CA. I use the IP address for mongod Common Name to allow hostname validation. The authentication already enabled to accept my client certificate.

    So everything is working. I can connect to it like this:

    mongo --ssl --host 192.168.99.100 --sslCAFile rootCA.pem --sslPEMKeyFile me.pem

    but now I can't get both mongodump and mongorestore working:

    mongodump --ssl --host 192.168.99.100 --sslCAFile rootCA.pem --sslPEMKeyFile me.pem -d olddb
mongorestore --ssl --host 192.168.99.100 --sslCAFile rootCA.pem --sslPEMKeyFile me.pem -d newdb --dir=dump/olddb

    Both return this error:

    2017-01-13T04:28:03.881+0800    Failed: error connecting to db server: no reachable servers, openssl error: Host validation error

    I have been trying to turn off client certificate, use username/password but still did not work. I need to remove the SSL in order to make it work.

    That means I can only use preferSSL in production. There is no way to bypass SSL in localhost if I stick with requireSSL.

    Anyone getting the same error? Is it a known issue?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Multiple databases and collections mongodump
Mongo SSL with Java Exception sending message
MongoDB: Getting SSL peer certificate validation failed: self signed certificate
How to correctly configure MongoDB to use Letsencrypt SSL on Ubuntu
Restoring the database dump of an older version of mongo to a new version of mongo
MongoDB: Error parsing command line: unrecognised option '--sslMode'
MongoDB Self-signed SSL connection: SSL peer certificate validation failed
MongoDB restore warning
Is it possible to specify a directory/folder for mongodump?
MongoDb: How to import dump data from .gz file?