# mongo
> use admin
> db.createUser( { user: "admin", pwd: "1234567890", roles: [ { role: "root", db: "admin" } ] } )
> use nodebb
> db.createUser( { user: "nodebb", pwd: "1234567890", roles: [ { role: "readWrite", db: "nodebb" }, { role: "clusterMonitor", db: "admin" } ] } )
> quit()
Enable security in MongoDB conf file.
File: /etc/mongod.conf
security:
authorization: enabled