Updated on 2023-12-28 GMT+08:00

RDS for MySQL Constraints

The following tables list the constraints designed to ensure the stability and security of RDS for MySQL.

Naming

Table 1 Naming

Item

Constraints

Instance name

  • Must be 4 to 64 characters long.
  • Must start with a letter. Only letters (case sensitive), digits, hyphens (-), and underscores (_) are allowed.

Database name

  • 1 to 64 characters long
  • Only letters, digits, hyphens (-), underscores (_), and dollar signs ($) are allowed. The total number of hyphens (-) and dollar signs ($) cannot exceed 10. (RDS for MySQL 8.0 does not support dollar signs ($).)

Account name

  • RDS for MySQL 5.6: The account name must be 1 to 16 characters long. Only letters, digits, hyphens (-), and underscores (_) are allowed.
  • RDS for MySQL 5.7 and 8.0: The account name must be 1 to 32 characters long. Only letters, digits, hyphens (-), and underscores (_) are allowed.

Backup name

  • Must be 4 to 64 characters long.
  • Must start with a letter. Only letters (case sensitive), digits, hyphens (-), and underscores (_) are allowed.

Parameter template name

  • 1 to 64 characters long
  • Only letters (case sensitive), digits, hyphens (-), underscores (_), and periods (.) are allowed.

Security

Table 2 Security

Item

Constraints

root permissions

Only the administrator account root is provided on the instance creation page. For details about the supported permissions, see root Permissions.

NOTE:

Running revoke, drop user, or rename user on root may cause service interruption. Exercise caution when running any of these statements.

root password

  • 8 to 32 characters long
  • Must contain at least three types of the following characters: uppercase letters, lowercase letters, digits, and special characters (~!@$#%^*-_=+?,()&).

Database port

1024 to 65535 (excluding 12017 and 33071, which are occupied by the RDS system)

Disk encryption

If you enable disk encryption during instance creation, the disk encryption status and the key cannot be changed later.

VPC

The VPC where a DB instance is located cannot be changed after the instance is created.

Security group

  • By default, you can create a maximum of 100 security groups in your cloud account.
  • By default, you can add up to 50 security group rules to a security group.
  • One RDS DB instance can be associated with multiple security groups, and one security group can be associated with multiple RDS DB instances.
  • When creating a DB instance, you can select multiple security groups. For better network performance, you are advised to select no more than five security groups.

System account

To provide O&M services, the system automatically creates system accounts when you create RDS for MySQL DB instances. These system accounts are unavailable to you.

  • rdsAdmin: a management account with the highest permission. It is used to query and modify instance information, rectify faults, migrate data, and restore data.
  • rdsRepl: a replication account, used to synchronize data from the primary instance to the standby instance or read replicas.
  • rdsBackup: a backup account, used for backend backup.
  • rdsMetric: a metric monitoring account used by watchdog to collect database status data.
  • rdsProxy: a database proxy account, used for authentication when the database is connected through the read/write splitting address. This account is automatically created when you enable read/write splitting.

Instance parameter

To ensure optimal performance of RDS, you can modify parameters in the parameter template you created as needed.

Instance Operations

Table 3 Instance operations

Item

Constraints

RDS for MySQL storage engine

Only the InnoDB storage engine is supported. MyISAM, FEDERATED, and MEMORY are not supported.

Instance deployment

ECSs where DB instances are deployed are not directly visible to you. You can only access the DB instances through IP addresses and database ports.

Data migration

You can migrate data from DDM, GaussDB, GaussDB(for MySQL), self-managed MySQL databases, self-managed Oracle databases, or MySQL databases built on other clouds to RDS for MySQL, or from one RDS for MySQL instance to another RDS for MySQL instance.

Data migration tools include Data Replication Service (DRS), mysqldump, and Data Admin Service (DAS). You are advised to use DRS because it is easy to use and can complete a migration task in minutes. DRS facilitates data transfer between databases, helping you reduce DBA labor costs and hardware costs.

Primary/Standby replication

RDS for MySQL uses a primary/standby dual-node replication cluster. You do not need to set up replication additionally. The standby DB instance is not visible to you and therefore you cannot access it directly.

Rebooting a DB instance

DB instances cannot be rebooted through commands. They must be rebooted through the RDS console.

Viewing backups

You can download automated and manual backups for local storage. To download a backup, you can use OBS Browser+, the current browser, or the download URL.

Log management

  • RDS for MySQL logging is enabled by default and cannot be disabled.
  • Binary logging is enabled for RDS for MySQL by default and uses row-based logging.
  • Read replicas do not provide binlogs.

Recycle bin

RDS allows you to move unsubscribed yearly/monthly DB instances and deleted pay-per-use DB instances to the recycle bin. You can rebuild a DB instance that was deleted up to 7 days ago from the recycle bin.

root Permissions

Table 4 root permissions

Permission

Level

Description

Supported

Select

Table

Query permissions

Yes

Insert

Table

Insert permissions

Update

Table

Update permissions

Delete

Table

Delete permissions

Create

Database, table, or index

Permissions of creating databases, tables, or indexes

Drop

Database or table

Permissions of deleting databases or tables

Reload

Server management

Permissions of running the following commands: flush-hosts, flush-logs, flush-privileges, flush-status, flush-tables, flush-threads, refresh, and reload

Process

Server management

Permissions of viewing processes

Grant

Database, table, or stored program

Permissions of granting access control

References

Database or table

Foreign key operation permissions

Index

Table

Index permissions

Alter

Table

Permissions of altering tables, such as adding fields or indexes

Show_db

Server management

Permissions of viewing database connections

Create_tmp_table

Server management

Permissions of creating temporary tables

Lock_tables

Server management

Permissions of locking tables

Execute

Stored procedure

Permissions of executing storage procedures

Repl_slave

Server management

Replication permissions

Repl_client

Server management

Replication permissions

Create_view

View

Permissions of creating views

Show_view

View

Permissions of viewing views

Create_routine

Stored procedure

Permissions of creating storage procedures

Alter_routine

Stored procedure

Permissions of altering storage procedures

Create_user

Server management

Permissions of creating users

Event

Database

Event triggers

Trigger

Database

Triggers

Super

Server management

Permissions of killing threads

No

File

File on the server

Permissions of accessing files on database server nodes

No

Shutdown

Server management

Permissions of shutting down databases

Create_tablespace

Server management

Permissions of creating tablespaces