To access ApsaraDB for MongoDB, users must pass account authentication.
A root user account is generated after creating a MongoDB instance. Users can specify the password during or after the instance creation.
By default, the root user account has complete MongoDB management permissions. Users can use the root user account to add or operate other accounts.
ApsaraDB for MongoDB provides the IP whitelist to implement network security access control.
Each MongoDB instance has an IP whitelist.
By default, the whitelist contains only the IP address 127.0.0.1, which means no IP address can access the MongoDB instance.
Users can use the Data Security Module of the console or an API to add IP addresses.
Updating the IP whitelist does not require a restart, and therefore does not affect the running instance.