Security

You can harden an ArangoDB server by restricting APIs, limiting what can be accessed in JavaScript contexts, and disable unused features

You can temporarily start ArangoDB with authentication disabled to set a new password for the root user

You can secure the physical storage media of an ArangoDB deployment by letting it encrypt the database directories

Audit logs capture interactions with the database system and allow you to check who accessed it, what actions were performed, and how the system responded

You should enable authentication for deployments you create with the ArangoDB Starter before starting them the first time