Bug #92740 Cannot create Standard auth user when the server is configured to use Strong Enc
Submitted: 10 Oct 2018 21:23 Modified: 26 Nov 2018 19:06
Reporter: John Belge Email Updates:
Status: Closed Impact on me:
Category:MySQL Workbench: Administration Severity:S2 (Serious)
Version:8.0.12 OS:Microsoft Windows (10)
Assigned to: CPU Architecture:Any

[10 Oct 2018 21:23] John Belge
When you set up a new MySQL server using the installer on Windows and choose the "Use Strong Password Encryption for Authentication" option, Workbench will not let you create Standard authentication users.

How to repeat:
Install MySQL using the installer on Windows and choose the "Use Strong Password Encryption for Authentication" option.

Now use Workbench to create a new MySQL user in the Users and Privileges section. Note that you should change the Login name to something other than newuser (see Bug #92738). When you specify an Authentication Type of Standard and Apply, it does not work. Check the user you just created and it has an Authentication Type of caching_sha2_password instead.

If you reconfigure the server using the "Use Legacy Authentication Method" option, Workbench will correctly apply Standard authentication to the new user.

In other words:

When default_authentication_plugin=mysql_native_password, Workbench will correctly let you specify Standard OR caching_sha2_password authentication for new users.

When default_authentication_plugin=caching_sha2_password, Workbench will ONLY accept caching_sha2_password - it ignores the Standard option even though you can choose it.

Suggested fix:
There appears to be a bug in the Workbench handing of the default_authentication_plugin=caching_sha2_password server setting. Choosing Standard as a user Authentication Type should be possible, so look into why it is not.
[11 Oct 2018 4:33] Umesh Shastry
Hello John,

Thank you for the report.
Verified as described.

[22 Nov 2018 13:20] Miguel Tadeu
Posted by developer:
commit id: fd81b350be9e6aced9bb6bf0e98d203b5225f235
[23 Nov 2018 17:55] Francisco Alberto Tirado Zavala
Posted by developer:
[26 Nov 2018 19:06] Christine Cole
Posted by developer:
Fixed as of the upcoming MySQL Workbench 8.0.14 release, and here's the changelog entry:

New accounts created to use standard authentication were instead created
to require strong password encryption when the
default_authentication_plugin server system variable was configured with
the caching_sha2_password value.

Thank you for the bug report.