All Products
Search
Document Center

How do I grant the accounts the required permissions

Last Updated: Jun 25, 2020

This topic describes the minimum permissions required by the accounts that Database Autonomy Service (DAS) can use to access the services of different database engines. This topic also provides details about how to grant the minimum permissions.

The following examples use the das_test database account to explain the account authorization. You must specify the password variable that follows the identified by parameter.

MySQL databases that are not ApsaraDB RDS for MySQL

GRANT SHOW DATABASES, PROCESS, REPLICATION SLAVE, REPLICATION CLIENT ON *. * TO 'das_test'@'%' identified by 'Password';

GRANT SELECT ON *. * TO 'das_test'@'%';

ApsaraDB RDS for MySQL

GRANT PROCESS, REPLICATION SLAVE, REPLICATION CLIENT ON *. * TO 'das_test'@'%' identified by 'Password';

GRANT SELECT ON *. * TO 'das_test'@'%';

MongoDB databases

use admin;

db.createUser({user:'${user}',pwd:'${password}',roles:[{role:'readAnyDatabase', db:'admin'}, {role:'clusterMonitor', db:'admin'}]})