tencent cloud

Feedback

Enabling/Disabling Custom Password Strength Feature

Last updated: 2022-09-19 15:47:05
    You can use the custom password strength feature with the root account or a sub-account granted with the corresponding CAM permissions. This document describes how to enable and disable the custom password strength feature.

    Version limits

    The custom password strength feature is supported by the following versions:
    MySQL 5.7 on kernel minor version 2.0.21 or later and 2.1.7 or later.
    MySQL 8.0 on kernel minor version 3.1.7.
    You can use this feature only after upgrading the kernel to the above versions. For detailed directions, see Upgrading Kernel Minor Version.

    Enabling custom password strength feature

    1. Log in to the TDSQL-C for MySQL console.
    2. Select the region at the top, find the target cluster in the cluster list, and click the cluster ID to enter the cluster management page.
    3. On the cluster management page, select Account Management and enable Custom Password Strength on the right.
    
    
    4. In the pop-up window, click Next to enter the initial settings page.
    
    
    5. Complete the following settings and click OK. In the initial settings of the custom password strength feature, two scenarios will be displayed for different password strength levels. Scenario 1: The password strength level is MEDIUM.
    
    
    Parameter
    Description
    Password Strength Level
    You can select
    MEDIUM
    or
    STRONG
    as the strength level.
    MEDIUM: The feature under this setting will check the length, digits, letters, and symbols.
    STRONG: The feature under this setting will check the length, digits, letters, symbols, and non-compliant word dictionary.
    Min Number of Uppercase and Lowercase Pair
    The minimum number of pairs of uppercase and lowercase letters that the password must contain. For example, if this parameter is set to `2`, the password must contain at least two uppercase letters and two lowercase letters. Default value: `1`. Value range: 1–50.
    Min Number of Digits
    The minimum number of digits that the password must contain. Default value: `1`. Value range: 1–50.
    Min Number of Symbols
    The minimum number of special symbols that the password must contain. Default value: `1`. Value range: 1–50.
    Min Password Length
    The minimum length of the password. Default value: `8`. Value range: 8–256. This parameter equals to the number of digits + number of symbols + 2 * number of letters, and it must be greater than or equal to 8 for security of your password. If the final value after the sum of above parameters is greater than 8, it will be used as the minimum of the range.
    Scenario 2: The password strength level is **STRONG**.
    
    
    
    Parameter
    Description
    Password Strength Level
    You can select
    MEDIUM
    or
    STRONG
    as the strength level.
    MEDIUM: The feature under this setting will check the length, digits, letters, and symbols.
    STRONG: The feature under this setting will check the length, digits, letters, symbols, and non-compliant word dictionary.
    Min Number of Uppercase and Lowercase Pair
    The minimum number of pairs of uppercase and lowercase letters that the password must contain. For example, if this parameter is set to `2`, the password must contain at least two uppercase letters and two lowercase letters. Default value: `1`. Value range: 1–50.
    Min Number of Digits
    The minimum number of digits that the password must contain. Default value: `1`. Value range: 1–50.
    Min Number of Symbols
    The minimum number of special symbols that the password must contain. Default value: `1`. Value range: 1–50.
    Min Password Length
    The minimum length of the password. Default value: `8`. Value range: 8–256. This parameter equals to the number of digits + number of symbols + 2 * number of letters, and it must be greater than or equal to 8 for security of your password. If the final value after the sum of above parameters is greater than 8, it will be used as the minimum of the range.
    Non-Compliant Dictionary
    If the password strength level is STRONG, this parameter is configurable. You can click Dictionary Settings for configuration. Each non-compliant word can contain 4–100 letters. After configuration, the system will check passwords for non-compliant words during password verification. If any non-compliant word (case-insensitive) is detected, the verification will fail.

    Disabling custom password strength feature

    1. Log in to the TDSQL-C for MySQL console.
    2. Select the region at the top, find the target cluster in the cluster list, and click the cluster ID to enter the cluster management page.
    3. On the cluster management page, select Account Management and disable Custom Password Strength on the right.
    
    
    4. In the pop-up window, click OK.
    
    
    5. In the pop-up window, you can click Batch Disable to select other clusters with the custom password strength feature enabled and batch disable the feature.
    Note:
    Once the custom password strength feature is disabled, the parameters you set will be automatically reset to the default value. If you enable the feature again, you need to configure these parameters again.
    You can select up to 20 clusters in one batch disablement operation.
    Contact Us

    Contact our sales team or business advisors to help your business.

    Technical Support

    Open a ticket if you're looking for further assistance. Our Ticket is 7x24 avaliable.

    7x24 Phone Support