PASSWORD('some password')
      | OLD_PASSWORD('some password')
      | 'encrypted password'


The SET PASSWORD statement assigns a password to an existing MariaDB user account.

If the password is specified using the PASSWORD() or OLD_PASSWORD() function, the literal text of the password should be given. If the password is specified without using either function, the password should be the already-encrypted password value as returned by PASSWORD().

OLD_PASSWORD() should only be used if your MariaDB/MySQL clients are very old (< 4.0.0).

With no FOR clause, this statement sets the password for the current user. Any client that has connected to the server using a non-anonymous account can change the password for that account.

With a FOR clause, this statement sets the password for a specific account on the current server host. Only clients that have the UPDATE privilege for the mysql database can do this. The user value should be given in user_name@host_name format, where user_name and host_name are exactly as they are listed in the User and Host columns of the mysql.user table entry.

The argument to PASSWORD() and the password given to MariaDB clients can be of arbitrary length.

MariaDB until 10.4

SET PASSWORD (with or without PASSWORD()) only works for accounts authenticated via mysql_native_password or mysql_old_password authentication plugins

The PASSWORD() function returns a 41 character hash.

MariaDB starting with 10.4

SET PASSWORD (with or without PASSWORD()) works for accounts authenticated via any authentication plugin that supports passwords stored in the mysql.user table. In 10.4.0, this includes the ed25519, mysql_native_password, and mysql_old_password authentication plugins.

The PASSWORD() function (in the context of SET PASSWORD) returns a password hash, calculated according to the corresponding authentication plugin requirements.


For example, if you had an entry with User and Host column values of 'bob' and '', you would write the statement like this:

SET PASSWORD FOR 'bob'@'' = PASSWORD('newpass');

See Also


Comments loading...