File: //snap/google-cloud-cli/394/help/man/man1/gcloud_sql_users_set-password-policy.1
.TH "GCLOUD_SQL_USERS_SET\-PASSWORD\-POLICY" 1
.SH "NAME"
.HP
gcloud sql users set\-password\-policy \- replaces a user's password policy in a given instance
.SH "SYNOPSIS"
.HP
\f5gcloud sql users set\-password\-policy\fR \fIUSERNAME\fR \fB\-\-instance\fR=\fIINSTANCE\fR, \fB\-i\fR \fIINSTANCE\fR [\fB\-\-async\fR] [\fB\-\-clear\-password\-policy\fR] [\fB\-\-host\fR=\fIHOST\fR] [\fB\-\-password\-policy\-allowed\-failed\-attempts\fR=\fIPASSWORD_POLICY_ALLOWED_FAILED_ATTEMPTS\fR] [\fB\-\-[no\-]password\-policy\-enable\-failed\-attempts\-check\fR] [\fB\-\-[no\-]password\-policy\-enable\-password\-verification\fR] [\fB\-\-password\-policy\-password\-expiration\-duration\fR=\fIPASSWORD_POLICY_PASSWORD_EXPIRATION_DURATION\fR] [\fIGCLOUD_WIDE_FLAG\ ...\fR]
.SH "DESCRIPTION"
Replaces a user's password policy in a given instance with a specified username
and host.
.SH "EXAMPLES"
To replace the password policy with 2 minutes password expiration time for
\f5\fImy\-user\fR\fR in instance \f5\fIprod\-instance\fR\fR, run:
.RS 2m
$ gcloud sql users set\-password\-policy my\-user \e
\-\-instance=prod\-instance \e
\-\-password\-policy\-password\-expiration\-duration=2m
.RE
To clear the existing password policy of \f5\fImy\-user\fR\fR in instance
\f5\fIprod\-instance\fR\fR, run:
.RS 2m
$ gcloud sql users set\-password\-policy my\-user \e
\-\-instance=prod\-instance \-\-clear\-password\-policy
.RE
.SH "POSITIONAL ARGUMENTS"
.RS 2m
.TP 2m
\fIUSERNAME\fR
Cloud SQL username.
.RE
.sp
.SH "REQUIRED FLAGS"
.RS 2m
.TP 2m
\fB\-\-instance\fR=\fIINSTANCE\fR, \fB\-i\fR \fIINSTANCE\fR
Cloud SQL instance ID.
.RE
.sp
.SH "OPTIONAL FLAGS"
.RS 2m
.TP 2m
\fB\-\-async\fR
Return immediately, without waiting for the operation in progress to complete.
.TP 2m
\fB\-\-clear\-password\-policy\fR
Clear the existing password policy. This flag is only available for Postgres.
.TP 2m
\fB\-\-host\fR=\fIHOST\fR
Cloud SQL user's hostname expressed as a specific IP address or address range.
\f5%\fR denotes an unrestricted hostname. Applicable flag for MySQL instances;
ignored for all other engines. Note, if you connect to your instance using IP
addresses, you must add your client IP address as an authorized address, even if
your hostname is unrestricted. For more information, see Configure IP
(https://cloud.google.com/sql/docs/mysql/configure\-ip).
.TP 2m
\fB\-\-password\-policy\-allowed\-failed\-attempts\fR=\fIPASSWORD_POLICY_ALLOWED_FAILED_ATTEMPTS\fR
Number of failed login attempts allowed before a user is locked out.
.TP 2m
\fB\-\-[no\-]password\-policy\-enable\-failed\-attempts\-check\fR
Enables the failed login attempts check if set to true. Use
\fB\-\-password\-policy\-enable\-failed\-attempts\-check\fR to enable and
\fB\-\-no\-password\-policy\-enable\-failed\-attempts\-check\fR to disable.
.TP 2m
\fB\-\-[no\-]password\-policy\-enable\-password\-verification\fR
The current password must be specified when altering the password. Use
\fB\-\-password\-policy\-enable\-password\-verification\fR to enable and
\fB\-\-no\-password\-policy\-enable\-password\-verification\fR to disable.
.TP 2m
\fB\-\-password\-policy\-password\-expiration\-duration\fR=\fIPASSWORD_POLICY_PASSWORD_EXPIRATION_DURATION\fR
Expiration duration after a password is updated, for example, 2d for 2 days. See
\f5gcloud topic datetimes\fR for information on duration formats.
.RE
.sp
.SH "GCLOUD WIDE FLAGS"
These flags are available to all commands: \-\-access\-token\-file, \-\-account,
\-\-billing\-project, \-\-configuration, \-\-flags\-file, \-\-flatten,
\-\-format, \-\-help, \-\-impersonate\-service\-account, \-\-log\-http,
\-\-project, \-\-quiet, \-\-trace\-token, \-\-user\-output\-enabled,
\-\-verbosity.
Run \fB$ gcloud help\fR for details.
.SH "NOTES"
These variants are also available:
.RS 2m
$ gcloud alpha sql users set\-password\-policy
.RE
.RS 2m
$ gcloud beta sql users set\-password\-policy
.RE