Connect to a MySQL database remotely
This article explains how to set up a user on your MySQL® server in order
to connect to a MySQL database
remotely.
Note: The article shows you how to connect to a MySQL instance local to a
server. For the corresponding steps for Cloud Databases, see Connect to a
Cloud Database
instance.
In order to perform these steps, you must have local server access to log in as
the root
MySQL user.
Retrieve your IP address
You need to know the Internet Protocol (IP) address of the computer from which
you're connecting. You can retrieve this information by visiting one of the
following sites:
Grant access
Perform the following steps to grant access to a user from a remote host:
-
Log in to your MySQL server locally as the
root
user by using the
following command:# mysql -u root -p
You are prompted for your MySQL root password.
Note: If you gain access to MySQL without entering a password,
consider running themysql_secure_installation
script, which sets a
MySQL root password and updates other settings to increase
security. Microsoft SQL Server Managed
Services can help you manage your SQL server instances. -
Use a
GRANT
command in the following format to enable access for the
remote user. Ensure that you change1.2.3.4
to the IP address that you
obtained previously, andmy_password
to the password that you
wantfooUser
to use:mysql> GRANT ALL ON fooDatabase.* TO fooUser@'1.2.3.4' IDENTIFIED BY 'my_password';
This statement grants
ALL
permissions to the new user when the user
connects from the specified IP address by using the specified password.
Test the connection remotely
To test the connection remotely, access the MySQL server from another
Linux® server. The following example uses 44.55.66.77
as the IP address
of the MySQL server:
# mysql -u fooUser -p -h 44.55.66.77
Enter password:
Welcome to the MySQL monitor. Commands end with ; or \g.
Your MySQL connection id is 17
Server version: 5.0.45 Source distribution
Type 'help;' or '\h' for help. Type '\c' to clear the buffer.
mysql> _
Considerations
When you set up a remote user, consider the following information:
-
A local user is different from a remote user. For example,
fooUser@localhost
is not the same as[email protected]
. If you want
both users to have the same permissions, you need to duplicate permissions. -
We don't recommend granting
ALL
permissions. For standard users, we
recommend grantingGRANT SELECT,INSERT,UPDATE,DELETE
permissions. -
To grant access to only a specific table, you can use the
database.table
command. For example, in the preceding step, you could usefooDatabase.fooTable
instead offooDatabase
. -
If you're using iptables, you need to add an entry to your firewall rule
for Transmission Control Protocol (TCP) port 3306. You can use the name
mysql
for the port number.
Updated about 1 year ago