MySQL Workbench Manual  /  ...  /  The Password Storage Vault

5.3.7 The Password Storage Vault

The vault provides a convenient secure storage for passwords used to access MySQL servers. By using the vault, you need not enter credentials every time MySQL Workbench attempts to connect to a server.


The hostname is used for storing password information. For example, a local connection might use "localhost", "", or "::1", but these are stored separately in the password storage vault, even if they all resolve to the same place.

The vault is implemented differently on each platform:

  • Windows: The vault is an encrypted file in the MySQL Workbench data directory. This is where connections.xml and related files are located. The file is encrypted using a Windows API which performs the encryption based on the current user, so only the current user can decrypt it. As a result it is not possible to decrypt the file on any other computer. It is possible to delete the file, in which case all stored passwords are lost, but MySQL Workbench will otherwise perform as expected. You then must re-enter passwords as required.

  • OS X: The vault is implemented using the OS X Secure Keychain. The keychain contents is also viewable from the native Keychain utility.

  • Linux: The vault works by storing passwords using the gnome-keyring daemon, which must be running for password persistence to work. The daemon is automatically started in GNOME desktops, but normally is not in KDE and others. The gnome-keyring daemon stores passwords for MySQL Workbench on non-GNOME platforms, but it must be started manually.

Download this Manual
PDF (US Ltr) - 14.7Mb
PDF (A4) - 14.7Mb
EPUB - 12.8Mb
HTML Download (TGZ) - 12.7Mb
HTML Download (Zip) - 12.8Mb
User Comments
Sign Up Login You must be logged in to post a comment.