As per mysql document mysql.user editing is not mentioned.
{doc}
IDENTIFIED WITH auth_plugin
Sets the account authentication plugin to auth_plugin, clears the credentials to the empty string (the credentials are associated with the old authentication plugin, not the new one), and stores the result in the mysql.user account row.
In addition, the password is marked expired. The user must choose a new one when next connecting.
{doc}
But we should make sure to set "password_expired=N" for PAM user before login into server.
As per mysql document mysql.user editing is not mentioned.
{doc}
IDENTIFIED WITH auth_plugin
Sets the account authentication plugin to auth_plugin, clears the credentials to the empty string (the credentials are associated with the old authentication plugin, not the new one), and stores the result in the mysql.user account row.
In addition, the password is marked expired. The user must choose a new one when next connecting.
{doc}
But we should make sure to set "password_ expired= N" for PAM user before login into server.