Help Center/ TaurusDB/ FAQs/ Database Parameter Modification/ How Do I Configure a Password Expiration Policy for TaurusDB Instances?

Updated on 2025-04-22 GMT+08:00

View PDF

How Do I Configure a Password Expiration Policy for TaurusDB Instances?

In TaurusDB kernel version 8.0, you can set the global variable default_password_lifetime to control the default validity period of a user password.

The default value of default_password_lifetime is 0, indicating that the created user password will never expire. If this parameter is set to N, the password must be updated every N days, starting from the last password update time.

Click to enlarge

Changing and Checking a Password Expiration Policy

You can change the global automatic password expiration policy in either of the following ways:

Change the value of default_password_lifetime on the TaurusDB console.
1. Log in to the management console.
2. Click in the upper left corner and select a region and project.
3. Click in the upper left corner of the page, choose Databases > TaurusDB.
4. On the Instances page, click the instance name.
5. In the navigation pane, choose Parameters.
6. Search for default_password_lifetime in the search box.
7. Change its value and click Save.
8. In the displayed dialog box, click Yes.
Run the following command to change the value of default_password_lifetime:
set global default_password_lifetime=0;

Configuring the password expiration policy during user creation
create user 'script'@'localhost' identified by '*********' password expire interval 90 day;
Configuring the password expiration policy after user creation
ALTER USER 'script'@'localhost' PASSWORD EXPIRE INTERVAL 90 DAY;
Setting the password to be permanently valid
CREATE USER 'mike'@'%' PASSWORD EXPIRE NEVER;

ALTER USER 'mike'@'%' PASSWORD EXPIRE NEVER;
Setting the password to follow the global expiration policy
CREATE USER 'mike'@'%' PASSWORD EXPIRE DEFAULT;

ALTER USER 'mike'@'%' PASSWORD EXPIRE DEFAULT;