sunhux
asked on
setting ssl_type = Any resulted in denied access for a mySql remote account
Refer to attached.
After setting the ssl_type to 'ANY' as per CIS hardening
benchmark for our mySql, access was denied.
What's missed?
We're running RHEL 7 OS
mySql_appmssl2.jpg
After setting the ssl_type to 'ANY' as per CIS hardening
benchmark for our mySql, access was denied.
What's missed?
We're running RHEL 7 OS
mySql_appmssl2.jpg
ASKER
it prompts when connecting from workbench thus it's
indication it's connectable.
--ssl is an invalid option in our case:
[root@u01 ~]# mysql -u appm -p --ssl
mysql: unknown option '--ssl'.
[root@u01 ~]# mysql -u appm -p -ssl
mysql: mysql: unknown option '-l'.
[root@u01 ~]# mysql -u appm -p
Enter password:
ERROR 1045 (28000): Access denied for user 'appm'@'localhost' (using password: YES)
indication it's connectable.
--ssl is an invalid option in our case:
[root@u01 ~]# mysql -u appm -p --ssl
mysql: unknown option '--ssl'.
[root@u01 ~]# mysql -u appm -p -ssl
mysql: mysql: unknown option '-l'.
[root@u01 ~]# mysql -u appm -p
Enter password:
ERROR 1045 (28000): Access denied for user 'appm'@'localhost' (using password: YES)
ASKER
There's an init file in mysql's home dir, does
this have any impact:
$ whoami
mysql
$ more init-file.txt
ALTER USER 'root'@'localhost' IDENTIFIED BY 'Temp@ssw0rd';
this have any impact:
$ whoami
mysql
$ more init-file.txt
ALTER USER 'root'@'localhost' IDENTIFIED BY 'Temp@ssw0rd';
Try mysql --help
mysql --ssl --help
mysql --version
mysql -u root
What happens?
mysql --ssl --help
mysql --version
mysql -u root
What happens?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
try
mysql -u appm -p --ssl
if you want secure, you should tell mysql to use secure through --ssl