ALTER USER
Descriptionβ
The ALTER USER command is used to modify a user's account attributes, including passwords, and password policies, etc.
Note that.
This command give over supports modifying user roles from versions 2.0. Please use GRANT and REVOKE for related operations
ALTER USER [IF EXISTS] user_identity [IDENTIFIED BY 'password']
[password_policy]
[comment]
user_identity:
'user_name'@'host'
password_policy:
1. PASSWORD_HISTORY [n|DEFAULT]
2. PASSWORD_EXPIRE [DEFAULT|NEVER|INTERVAL n DAY/HOUR/SECOND]
3. FAILED_LOGIN_ATTEMPTS n
4. PASSWORD_LOCK_TIME [n DAY/HOUR/SECOND|UNBOUNDED]
5. ACCOUNT_UNLOCK
About user_identity
and password_policy
, Please refer to CREATE USER
.
ACCOUNT_UNLOCK
is used to unlock a locked user.
In an ALTER USER command, only one of the following account attributes can be modified at the same time:
- Change password
- Modify
PASSWORD_HISTORY
- Modify
PASSWORD_EXPIRE
- Modify
FAILED_LOGIN_ATTEMPTS
andPASSWORD_LOCK_TIME
- Unlock users
Examplesβ
-
Change the user's password
ALTER USER jack@'%' IDENTIFIED BY "12345";
-
Modify the user's password policy
ALTER USER jack@'%' FAILED_LOGIN_ATTEMPTS 3 PASSWORD_LOCK_TIME 1 DAY;
-
Unlock a user
ALTER USER jack@'%' ACCOUNT_UNLOCK
-
Modify the user's comment
ALTER USER jack@'%' COMMENT "this is my first user"
Keywordsβ
ALTER, USER
Best Practiceβ
-
Modify the password policy
-
Modify
PASSWORD_EXPIRE
will reset the timing of password expiration time. -
Modify
FAILED_LOGIN_ATTEMPTS
orPASSWORD_LOCK_TIME
will unlock the user.
-