Incrementing of the access_denied_errors status variable

The access_denied_errors status variable is incremented when someone tries to access something they do not have rights to.

This happens in the following cases:

• When accessing a database, table, or column that the user does not have rights to access. The error is sent to the client.

• When a login fails because of the wrong user/password, etc. The error is printed to the general log.

• When the require_secure_transport option is enabled on the server, and the user has not used a secure transport. The error is sent to the client.

• Users try to change to a database/schema they do not have access to. A warning is written to the error log if log_warnings > 1.

• Users try to use a SHOW command to access an object they do not have rights to see. The error is sent to the client.

• Users access something that requires global access, like "CREATE SERVER". The error is sent to the client.

Login failures can be found in the general log. Errors that are sent to the client can be found by using the SQL Error Log Plugin. The plugin captures all errors sent to the client. Starting from MariaDB 10.11.5, it can also optionally capture all warnings sent to the client.

See Also

• Troubleshooting Connection Issues

• GRANT

• Error 1045: Access denied for user (using password)

_{This page is licensed: CC BY-SA / Gnu FDL}