Providing Credentials for CQLSH

Provide a username and password to connect to a node on an authentication enabled DataStax Enterprise (DSE) cluster using credentials:

  • Stored in the cqlshrc file

  • Specified by command line options

Debugging cqlsh authentication

If problems occur while authenticating, then use the --debug option to show CQL shell settings and connection details.

Procedure

  1. Locate the cqlshrc file. The location of this file depends on the type of installation:

    • Package installations: /etc/dse/cassandra

    • Tarball installations: <installation_location>/resources/cassandra/conf

  2. Set credentials in the cqlshrc file:

    1. Create or modify the ~/.cassandra/cqlshrc file by adding an [authentication] section with a username and password.

      [authentication]
username = <role_name>
password = <password>

      See cqlshrc.sample for an example.

    2. Save the file in <$HOME>/.cassandra directory.

    3. Set permissions on the file to prevent unauthorized access, because the password is stored in plain text.

      chmod 440 <$HOME>/.cassandra/cqlshrc

    4. Check the permissions on <$HOME>/.cassandra/cqlshrc_history to ensure that plain text passwords are not compromised.

  3. On the command line:

    • Prompt for password

      cqlsh -u <user_name>

    • No prompt

      cqlsh -u <user_name> -p <password>

Was this helpful?

Give Feedback

How can we improve the documentation?

© 2025 DataStax | Privacy policy | Terms of use | Manage Privacy Choices

Apache, Apache Cassandra, Cassandra, Apache Tomcat, Tomcat, Apache Lucene, Apache Solr, Apache Hadoop, Hadoop, Apache Pulsar, Pulsar, Apache Spark, Spark, Apache TinkerPop, TinkerPop, Apache Kafka and Kafka are either registered trademarks or trademarks of the Apache Software Foundation or its subsidiaries in Canada, the United States and/or other countries. Kubernetes is the registered trademark of the Linux Foundation.

General Inquiries: +1 (650) 389-6000, info@datastax.com