Appendix F Deployment Configuration File

Upon the completion of the deployment described in this guide, the MySQL configuration file (/etc/my.cnf) contains these configuration settings:

[mysqld]
datadir=/usr/local/mysql/data
socket=/tmp/mysql.sock
port=3306
log-error=/usr/local/mysql/data/localhost.localdomain.err
user=mysql
secure_file_priv=/usr/local/mysql/mysql-files
local_infile=OFF
validate_password.policy=1
validate_password.length=8
validate_password.number_count=1
validate_password.mixed_case_count=1
validate_password.special_char_count=1
validate_password.check_user_name=1
audit-log=FORCE_PLUS_PERMANENT
mysql_firewall_mode=ON
plugin-load-add=connection_control.so
connection-control=FORCE_PLUS_PERMANENT
connection-control-failed-login-attempts=FORCE_PLUS_PERMANENT
connection_control_failed_connections_threshold=3
connection_control_min_connection_delay=1000
connection_control_max_connection_delay=2147483647
block_encryption_mode=aes-256-cbc
default_authentication_plugin=caching_sha2_password
plugin-load-add=auth_socket.so
auth_socket=FORCE_PLUS_PERMANENT
ssl_ca=ca.pem
ssl_cert=client-cert.pem
ssl_key=client-key.pem
bind_address=192.0.2.24
tls_version=TLSv1.3
tls_ciphersuite=TLS_AES_128_GCM_SHA256
default_password_lifetime=120
password_history=12
password_reuse_interval=1095
generated_random_password_length=20
password_require_current=1