192.168.56.11 192.168.56.12 192.168.56.13 三台机器 1.##基础配置
mongodb-linux-x86_64-3.4.10.tgz tar xf mongodb-linux-x86_64-3.4.10.tgz mv mongodb-linux-x86_64-3.4.10 /root/mongodb cd /root/mongodb mkdir data logs
2.###mongo配置文件
[root@k8s-node1 ~]# cat /root/mongodb/mongo.conf logpath=/root/mongodb/logs/mongo.log logappend=true port=27018 fork=true dbpath=/root/mongodb/data/ replSet=replSet keyFile=/root/mongodb/keyfile
3.####keyfile生成
openssl rand -base64 90 -out ./keyfile chmod 600 keyfile mv keyfile /root/mongodb/
scp -r /root/mongodb 192.168.56.12:/root/ scp -r /root/mongodb 192.168.56.13:/root/
4.启动mongodb 所有节点都启动
mongod -f mongodb/mongo.conf
5.初始化副本集以及添加管理员(在一台节点上面 我这是192.168.56.11)
mongo --port 27018
config = {_id: 'replSet', members: [{_id: 0, host: '192.168.56.11:27018'},{_id: 1, host: '192.168.56.12:27018'},{_id: 2, host:'192.168.56.13:27018'}]}
rs.initiate(config)
rs.status()
use admin
db.createUser({user:"admin",pwd:"123456",roles:[{role:"userAdminAnyDatabase",db:"admin"}]})
6.添加管理员可以操作复制集的权限(在primary节点上面)
use admin
db.auth("admin","123456")
db.grantRolesToUser( "admin" , [ { role: "dbOwner", db: "admin" },{ "role": "clusterAdmin", "db": "admin" },
{ "role": "userAdminAnyDatabase", "db": "admin" },
{ "role": "dbAdminAnyDatabase", "db": "admin" }])
扫描二维码关注公众号,回复:
4113973 查看本文章
7.测试 primary节点(通过rs.status可以看到)
use dbname
db.createUser({ user: "test",
pwd: "123456",
roles:[{"role":"readWrite","db":"dbname"},
{"role":"dbAdmin","db":"dbname"},
{"role":"dbOwner","db":"dbname"},
{"role":"read","db":"dbname"}]})
db.inventory.insert( { _id: 10, type: "misc", item: "card", qty: 15 } )