Controle de acesso no MongoDB

Answer the following questions about access control in mongoDB: It is intended to evaluate and answer the following questions related to the Policy management function, and to validate whether the system allows implementing forms of Access Control (CA), based on the NIST document. Metric - Does the system allow policy management? Scenario - multiple policies Purpose - to verify that the AC system provides policy identification for multiple policies. Reply: Scenario - policy expiration Purpose - to verify that the AC system allows for policy expiration assignment. Reply: Scenario - policy goals Objective - check if the AC system allows the assignment of policy goals. Reply: Scenario - policy destination Objective - check if the AC system allows assignment of policy destination event. Reply: Scenario - policy mix Purpose - to verify that the AC system provides policy-matching logic. Reply: Scenario - policy distribution Purpose - to verify that the AC system requires policy distribution approval. Reply: Scenario - policy source Purpose - to verify that the AC system provides policy source authorization. Reply: Scenario - activation check Purpose - to verify whether the AC system provides policy implementation or activation verification. Reply: Scenario - impact of policies Objective - to verify that the AC system provides an analysis of the impact of policies. Reply: Scenario - runtime policy Objective - check if the AC system allows change of runtime policy rule. Reply: It is intended to evaluate and answer the following questions regarding the role of Delegation of administrative capabilities, and to validate whether the system allows implementing forms of Access Control (CA), based on the NIST document. To ensure ease of provisioning and maintaining accounts, roles can be delegated, ensuring that policies are consistent with specific roles within the organization. Metric - Does the system allow delegation of administrative capabilities? Scenario - delegation policies Purpose - checking the AC system allows for the administration of delegation policies. Reply: It is intended to evaluate and answer the following questions regarding the function of Flexibilities of configuration into existing systems, and to validate whether the system allows implementing forms of Access Control (CA), based on the NIST document. Metric - Configuration flexibilities in existing systems? Scenario - operating system Objective - check if the CA mechanism is imposed by the operating system. Reply: Scenario - microkernel Objective - to verify if the AC mechanism is imposed by a microkernel. Reply: Scenario - Applications Purpose - to verify whether CA is enforced by applications. Reply: Scenario - client / server Objective - to verify if CA is imposed by a client / server communication protocol. Reply: It is intended to evaluate and answer the following questions related to the function of The horizontal scope (across platforms and applications) of control, and to validate whether the system allows implementing forms of Access Control (CA), based on the NIST document. Metric - Does the horizontal scope system (between platforms and applications) control? Scenario - single host Purpose - to verify that the AC system supports only a single host. Reply: Scenario - multiple hosts via network Purpose - to verify that the AC system supports multiple hosts over the network. Reply: Scenario - virtual communities Objective - check if the AC system supports virtual communities. Reply: