Details
NO_AUTO_CREATE_USER is an option for sql_mode that prevents a GRANT statement from automatically creating a user when authentication information is not provided.
Solution
Perform the following actions to remediate this setting:
1. Open the MySQL configuration file (my.cnf)
2. Find the sql_mode setting in the [mysqld] area
3. Add the NO_AUTO_CREATE_USER to the sql_mode setting
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system Windows.