TOC & Recently Viewed

Recently Viewed Topics

MongoDB Keywords

Keyword

Example Use and Supported Settings

description

This keyword provides the ability to add a brief description of the check that is being performed. It is strongly recommended that the description field be unique and no distinct checks have the same description field. Tenable SecurityCenter uses this field to automatically generate a unique plugin ID number based on the description field.

Example:

description: "Require Authentication – DB users –'User authenticated by MongoDB'"

collection

The name of the MongoDB that the plugin connects to get information.

Example:

info: 'admin.system.users'."

query

The MongoDB query.

Example:

query: '{"credentials.MONGODB-CR": {"$exists": 1}}'"

fieldsSelector

This is an optional field that allows selecting specific attributes from a result. This field the equivalent of “select attribute from database” from a traditional database.

Example:

fieldsSelector: '{"_id": 0, "user" : 1}'

The MongoDB audit also supports regex, expect, not_expect, and known_good keywords in its syntax.

Copyright 2017 - 2018 Tenable, Inc. All rights reserved. Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trademarks of Tenable, Inc. Tenable, Tenable.io, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective owners.