Set Up a Transient Credential Store | Teradata Query Service - 3.01 - Setting Up Transient Credential Store - Teradata Query Service

Teradata® Query Service Installation, Configuration, and Upgrade Guide for Customers

prodname
Teradata Query Service
vrm_release
3.01
created_date
May 2019
category
Configuration
Installation
featnum
B035-2700-059K
For improved security, the application can optionally use a token-based authentication instead of basic authentication. The token is sent with each request over a two hour period without you having to supply your credentials with each request.

No administrative actions are necessary to enable this feature if you are running a single instance of the Query Service.

Do the following when running multiple instances of the Teradata Query Service behind a load balancer:

  1. Switch the key store key strategy from random to hash on each server by adding credential.key.store.random=false to the /opt/teradata/rest/tdrest/application.properties file.
  2. Keep the credential store keys synchronized on all servers by manually copying the file /etc/opt/teradata/rest/credentials.jks from one server to the remaining servers.