After seeing that default passwords generated by phpMyAdmin used mysql_native_password and therefore hashes didn't changed when equal passwords where used, I updated one user's password and set the hashing to SHA256.
When I tried to login again using the setted password it says:
mysqli_real_connect(): (HY000/1045): Access denied for user 'xxxx'@'xxxx' (using password: YES).
The server uses https and phpMyAdmin forces to uses SSL as well.
Once the password is changed with SHA256, the only way to gain access again is manually setting the password and reverting password plugin to mysql_native_password.
How can I login to phpMyAdmin with users using SHA256 passwords?
Note: if I try to use the same user and the SHA256 password to login to mysql console it works fine.
MySQL has recently changed the default authentication type and, between MySQL and PHP, this change took quite a while to be supported by PHP. The old method was mysql_native_password
and the new one is caching_sha2_password
. PHP versions starting with 7.4 support the new method. Since this is related to PHP itself, phpMyAdmin supporting this method requires you to run an updated PHP installation (phpMyAdmin itself is ready for this change, but your ability to use it depends on your PHP version).
You basically have two options:
- Upgrade your PHP to 7.4 or newer.
- Change the authentication type on your user to the older
mysql_native_password
. You can do that by editing the user (from the User accounts tab in phpMyAdmin, edit the user, then change the authentication method from the dropdown).
Problem was that ubuntu's 18.04.3 install had outdated MySQL, PHP and phpMyAdmin.
To solve the problem I needed to update MySQL from 5.7 to 8, PHP from 7.3 to 7.4 and phpMyAdmin to 4.9.2.
After updating I can log in with users that has a caching_sha2_password password so, for those with same problem as mine, check your current versions of PHP, MySQL and phpMyAdmin and upgrade them if needed. (Perform a backup first as you may encounter data loss)