Creating a User

Scenarios

Multiple users with different permissions can be created to access a DB instance or database, but the permissions of these users must be within the range of the account permissions.

Procedure

  1. On the top menu bar, choose Account Management > User Management.
  2. On the displayed page, click Create User. Then, configure basic information, advanced settings, global permissions, and object permissions, and click Save. In the displayed dialog box, click OK.

    In the user list, you can view all created users, or locate a user and click Edit and Delete in the Operation column to manage it.

    Table 1 describes the user permissions briefly. For details about permission usages and explanations, visit the official website.

    Table 1 Permission description

    Permission

    Description

    SELECT

    Permission to query a specified object, for example, a global or single database.

    INSERT

    Permission to insert data into a specified object.

    UPDATE

    Permission to update data of a specified object.

    DELETE

    Permission to delete data from a specified object.

    CREATE

    Permission to create databases and tables for a specified object.

    DROP

    Permission to delete databases, tables, and views of a specified object.

    RELOAD

    Permission to execute FLUSH.

    PROCESS

    Permission to execute SHOW PROCESSLIST to view all the processes.

    GRANT

    Permission to grant a specified object the permissions of another account or reclaim permissions from other accounts.

    REFERENCES

    Permission to create foreign keys for a specified object.

    INDEX

    Permission to create or delete index for a specified object.

    ALTER

    Permission to execute ALTER TABLE for a specified object.

    SHOW DATABASES

    Permission to run the SHOW DATABASES command to show all databases.

    CREATE TEMPORARY TABLES

    Permission to execute CREATE TEMPORARY TABLE for a specified object.

    LOCK TABLES

    Permission to execute LOCK TABLES on the tables with the SELECT permission for a specified object.

    EXECUTE

    Permission to execute a stored procedure for a specified object.

    REPLICATION SLAVE

    Permission to allow the replica server to read binary log events from the source server.

    REPLICATION CLIENT

    Permission to query the location of the source server or replica server.

    CREATE VIEW

    Permission to create or alter a view for a specified object.

    SHOW VIEW

    Permission to execute SHOW CREATE VIEW for a specified object.

    CREATE ROUTINE

    Permission to create a stored procedure for a specified object.

    ALTER ROUTINE

    Permission to alter or delete a stored procedure for a specified object.

    CREATE USER

    Permission to execute CREATE USER, DROP USER, RENAME USER, and REVOKE ALL PRIVILEGES for a specified object.

    EVENT

    Permission to create, modify, delete, or display the event scheduler for a specified object.

    TRIGGER

    Permission to execute a trigger for a specified object. Only users with this permission can create, delete, execute, or display triggers of the table.

Parent topic: Account Management