This topic provides answers to some commonly asked questions about Database Autonomy Service (DAS).

FAQ

Q: How do I authorize DAS to access an instance and access the instance from DAS?

A: See Access an Alibaba Cloud database instance and Access an ECS-based self-managed database instance.

Q: What are the minimum permissions required for different database engines?

A: See Permissions.

Q: Can I use the root account to access a self-managed MySQL database from DAS?
A: No, you cannot use the root account to access a self-managed MySQL database from DAS. DBGateway requires that the IP address used to access the database is that of the host. However, the root account of a self-managed MySQL database typically allows access only from the IP address of localhost or 127.0.0.1. Therefore, you cannot access the self-managed MySQL database from DAS by using the root account.
Note In order to implement the least privilege principle and account isolation, we recommend that you use a separate account to access self-managed MySQL databases from DAS.

Q: Can I access self-managed Redis databases without providing the account password?

A: Yes, you can access self-managed Redis databases without providing the account password. When a DBGateway detects a database instance, it attempts to establish a connection to the database. If the account used to log on to the Redis database has no password, the status of the instance changes to Accessed.

Q: Why am I prompted that the authentication failed when I authorize a RAM user to access a database instance?

A: An authentication failure may occur due to one of the following reasons:
  • The account does not exist. When you grant permissions to a RAM user in the DAS console, use the account used to log on to the database instead of the Alibaba Cloud account.
  • The password is wrong. Use the correct password of the account used to log on to the database.
  • The authentication is blocked by the control settings. To authorize an existing database account to access a database, you must check the access control settings of the database. For example, check whether the IP address is added to the whitelist of the database.