FAQ about instance connection to DAS - Database Autonomy Service

This topic provides answers to some commonly asked questions about instance connection to Database Autonomy Service (DAS).

FAQ

How do I connect an instance to DAS and authorize access to the instance?
For more information, see Connect an Alibaba Cloud database instance to DAS.
What are the minimum permissions required for the accounts of different database engines?
For more information, see Permissions.
Can I use the root account to access a self-managed MySQL database from DAS?
No, you cannot use the root account to connect a self-managed MySQL database to DAS. DBGateways require that the IP address used to access the database is the IP address of the host. However, the root account of a self-managed MySQL database typically allows access only from the IP address of localhost or 127.0.0.1. Therefore, you cannot use the root account to connect a self-managed MySQL database to DAS.

Note To implement the least privilege principle and account isolation, we recommend that you use a separate account to access self-managed MySQL databases from DAS.
Can I access self-managed Redis databases without the need to provide the account password?
Yes, you can access self-managed Redis databases without the need to provide the account password. When a DBGateway detects a database instance, the DBGateway attempts to establish a connection to the database. If the account used to log on to your Redis database has no password, the state of the instance changes to Accessed.
Why am I prompted that the authentication failed when I authorize a RAM user to access a database instance?
An authentication failure may occur due to one of the following reasons:
- The account does not exist. When you grant permissions to a RAM user in the DAS console, use the account used to log on to the database instead of the Alibaba Cloud account.
- The password is wrong. Use the valid password of the account used to log on to the database.
- The authentication is blocked by the access control settings. To authorize an existing database account to access a database, you must check the access control settings of the database. For example, check whether the IP address is added to the whitelist of the database.