Now that you know how to configure the database server to communicate using a secure TLS connection, it's time to have a look at how the client can connect over a TLS connection. For the purposes of this discussion, we focus on connecting using the mongo shell. The next chapter, Chapter 12, Developing in a Secured Environment, covers how to connect over a TLS connection using the PyMongo client and an X.509 certificate.
For command line mongo shell connections over a secure TLS connection, command-line switches are summarized in the following table:
Switch | Arguments | Notes |
--tls | -- | Causes the mongo shell to request a TLS handshake from the target mongod or mongos instance. |
--tlsCertificateKeyFile | string | The value represents the full path to the PEM file containing the client certificate and key. |
--tlsCertificateKeyFilePassword | string | The value associated with this option is a string representing the password if the client certificate... |