Issue Summary
By default, MongoDB allows access to the shell using the standard account without requiring a password. This creates a security risk, as third‑party applications or tools can connect without authentication.
Attempted Remediation
Authentication can be enabled in the mongod.conf file by setting the authorization parameter. However, when this is enabled, Sage X3’s Web Syracuse services fail to connect. The Syracuse service logs confirm that the failure is due to MongoDB authentication errors.
Root Cause
Sage’s Syracuse configuration is not updated to use credentials when MongoDB authentication is enabled. As a result, the service attempts to connect without a password and is rejected by MongoDB.
Guest
