Overview

MariaDB Enterprise Server authentication is performed by database user accounts. Database user accounts are specified by user name, the hostname from which the account is connecting, and the authentication plugins configured for the account, such as mysql_native_password, pam, or unix_socket.

Change Password

The password for a can be changed using the , , and statements.

Password Validation Plugins

If your MariaDB Enterprise Server node has a password validation plugin installed, then the password should also meet the configured requirements. When you try to set or change a user's password and the password validation plugin rejects the password, the following error message will be shown:

By default, the MariaDB Enterprise Server installs the plugin, but the plugin is also available.

For , the password requirements are configured by several system variables:

Authentication Plugins

MariaDB Enterprise Server uses authentication plugins to support different authentication methods. The default authentication plugin is mysql_native_password.

_{This page is: Copyright © 2025 MariaDB. All rights reserved.}

Overview

The gssapi validates user credentials against a GSSAPI-based authentication service, like Kerberos or NTLM.

Install Package

The gssapi