Why is MongoDB (with SSL) asking for the .pem passphrase multiple times?

Question

I'm starting MongoDB with the following command (which I'll eventually add to a script):

mongod --sslMode requireSSL --sslPEMKeyFile ./certs/myCertAndKey.pem

After which, mongo will prompt:

Enter PEM passphrase

Which is fine, but upon entering the correct passphrase it will ask again. And again.

Mongo asks for the PEM password FIVE times in a row! I know I'm entering the password correctly because if I enter it wrong just once, I'll get a failure message.

Is this normal? Is there a way to simplify this other than removing the password from the pem file?

My end goal is to have my spring boot application start up the local MongoDB with SSL if it isn't already running, but asking for the password 5 times is ridiculous.

Version info:

MongoDB shell version v3.4.4
git version: 888390515874a9debd1b6c5d36559ca86b44babd
OpenSSL version: OpenSSL 0.9.8zh 14 Jan 2016
allocator: system
modules: none
build environment:
- distarch: x86_64
- target_arch: x86_64

Sercan Ozdemir · Accepted Answer

You may need to disable promption of passphrase by specifying PEMKeyPassword

To start mongod with a configuration file, you can use below command:

mongod --config /etc/mongod.conf

And you need to specify PEMKeyPassword in the below structure:

net:
   port: 
   bindIp: 
   maxIncomingConnections: 
   wireObjectCheck: 
   ipv6: 
   unixDomainSocket:
      enabled: 
      pathPrefix: 
      filePermissions: 
   http:
      enabled: 
      JSONPEnabled: 
      RESTInterfaceEnabled: 
   ssl:
      sslOnNormalPorts:   # deprecated since 2.6
      mode: 
      PEMKeyFile: 
      PEMKeyPassword: 
      clusterFile: 
      clusterPassword: 
      CAFile: 
      CRLFile: 
      allowConnectionsWithoutCertificates: 
      allowInvalidCertificates: 
      allowInvalidHostnames: 
      disabledProtocols: 
      FIPSMode: 
   compression:
      compressors:

Why is MongoDB (with SSL) asking for the .pem passphrase multiple times?

Answers (1)

Related Questions