install mysql keyring plugin

mysql encryption plugins
12,058

Harriett, do the following:

  • Check the user that the MySQL service runs as (e.g., NETWORK SERVICE)
  • Create a keyring folder in C:/Program Files/MySQL/MySQL Server 5.7
  • Explicitly grant the MySQL service user permissions on the keyring folder

By default on Windows when using keyring_file, the keyring file is stored in C:/Program Files/MySQL/MySQL Server 5.7/keyring/keyring (I determined this by running SHOW VARIABLES LIKE 'keyring%' after installing the plugin and confirming its loading as you described).

After creating the keyring folder in C:/Program Files/MySQL/MySQL Server 5.7 right-click, then Properties -> Security, then Edit -> Add etc. Once the user is added check "Modify" in addition to Read & execute, List folder contents, Read and Write.

Then restart the MySQL service and you should be able to create an encrypted table without error.

NOTE: For security reasons you should go back and remove all users/groups you don't think will absolutely need to have access to the keyring folder (e.g., local machine users). On Unix the docs recommend that the mysql user and group alone have access to the folder.

Share:
12,058
Harriett Xing
Author by

Harriett Xing

Updated on June 04, 2022

Comments

  • Harriett Xing
    Harriett Xing about 2 years

    I was trying to install keyring plugin on MySQL 5.7.18.

    I edited my.ini file. It was blank so I added the following text and restarted MySQL.

    [mysqld]
early-plugin-load=keyring_file.dll

    I ran the following command to install the plugin.

    mysql> install plugin keyring_file soname 'keyring_file.dll';

    I then ran the following sql to check:

    mysql> SELECT PLUGIN_NAME, PLUGIN_STATUS
    ->        FROM INFORMATION_SCHEMA.PLUGINS
    ->        WHERE PLUGIN_NAME LIKE 'keyring%';
+--------------+---------------+
| PLUGIN_NAME  | PLUGIN_STATUS |
+--------------+---------------+
| keyring_file | ACTIVE        |
+--------------+---------------+
1 row in set (0.00 sec)

    But when I tried to alter a table to use encryption, I got errors.

    mysql> ALTER TABLE t1 ENCRYPTION='Y';
ERROR 3185 (HY000): Can't find master key from keyring, please check keyring 
plugin is loaded.

    Did I miss a step somewhere?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

How do I encrypt this password with MD5 using PHP?
How to encrypt mysql password in php (or how to defeat automated code scanner red flag)
Is there a way to store Mosquitto payload into an MySQL database for history purpose?
How to create a mysql "sha-256" column?
MYSQL SELECT WHERE LIKE WITH AES_ENCRYPT
Configured MySQL for SSL , but SSL is still DISABLED..!
What's the best practice for taking MySQL dump, encrypting it and then pushing to s3?
Is MySQL port 3306 encrypted, and if no, how can I encrypt it?
Whats a good way to encrypt a mysql database, and is it worth it?
Encrypt a password the same way mysql does