Can't create a new user with all privileges on AWS RDS MySQL instance

mysql amazon-web-services amazon-rds

I've initiated a AWS RDS MySQL instance and would like to create an additional user, who has all privileges on all databases;

grant all privileges on *.* to "someuser"@"10.0.0.0/255.255.0.0";
ERROR 1045 (28000): Access denied for user 'root'@'%' (using password: YES)

As you can see, I'm not allowed to do so, even though I'm triggering the command as root.

How can I solve this?


Solution 1:

It is not allowed in RDS to grant all permissions to *.*, but you can use a trick:

GRANT ALL PRIVILEGES ON `%`.* TO 'someuser'@XXX;

Also, don't forget: ALL [PRIVILEGES] gives all permissions except GRANT OPTION and PROXY!

Solution 2:

When using RDS (Managed DB service) you simply can't create a root user as you're trying to do.

Simply use

CREATE USER 'username'@'%' IDENTIFIED BY 'userpassword';
GRANT SELECT ON [your_database].[some_table] TO 'username'@'%';

Related

Injecting ip address into command prompt
Windows Firewall misbehaving
Does GCP Cloud Armor support TCP load balancer? I am unable to add TCP load balancers as a Targets in Cloud Armor?
How to convert my hard disk PartitionStyle from GPT back to RAW in Windows 10
How to start Nginx (or listen a http port) after PHP-FPM startup in a single container?
DockerFile and docker-compose (Homeassistant and Node-red Nodes)
Exchange 2007 - Mailbox Database Recovery
How to Specify the location of the Exchange Logs for a eseutil Soft Recovery?
How to enable TLS with port 587 with Secure Authentication on Postfix?
How do you detect if the file is in deferred state?
Delay TCP SYN retransmission on Linux
Reset ASMB8 BMC Credentials