To aid in the assignment of privileges to MySQL Server users,
MySQL Workbench introduces the concept of Administrative Roles.
Roles are a quick way of granting a number of privileges to a
user, based on the work the user needs to carry out on the
server. It is also possible to assign multiple roles to a
user. To assign roles, click on the User Account you wish to
modify, and then click on the Administrative
Roles tab. Then click the checkboxes according to
the roles you wish to allocate to the user. Note once you
select a role to a user you will see the accumulated
privileges in the Global Privileges Assigned to
User panel. For example, if you select the role
BackupAdmin
the privileges granted would
include EVENT
, LOCK
TABLES
, SELECT
, SHOW
DATABASES
. Then if you additionally select the role
of ReplicationAdmin
, the list of privileges
will be expanded to also include REPLICATION
CLIENT
, REPLICATION SLAVE
and
SUPER
.
The roles available are:
DBA - Grants all privileges
MaintenanceAdmin - Grants privileges to maintain server
ProcessAdmin - Grants privileges to monitor and kill user processes
UserAdmin - Grants privileges to create users and reset passwords
SecurityAdmin - Grants privileges to manage logins and grant and revoke server
MonitorAdmin - Grants privileges to monitor server
DBManager - Grants privileges to manage databases
DBDesigner - Grants privileges to create and reverse engineer any database schema
ReplicationAdmin - Grants privileges to set up and manage replication
BackupAdmin - Grants privileges required to backup databases