TDGSS LdapServicePasswordProtected Property | Teradata Vantage - 17.10 - LdapServicePasswordProtected - Advanced SQL Engine - Teradata Database

Teradata Vantage™ - Advanced SQL Engine Security Administration

Product
Advanced SQL Engine
Teradata Database
Release Number
17.10
Release Date
July 2021
Content Type
Administration
Security
Publication ID
B035-1100-171K
Language
English (United States)

The value of the LdapServicePasswordProtected property indicates whether the password defined in LdapServicePassword is stored in encrypted form. You can use the -s option of the tdspasswd tool to create an encrypted version of the LdapServicePassword. See Identity Search Implementation Process.

The LdapServicePassword property is usable for all mechanisms that support service binds.

If you use this property also configure the LdapServiceFQDN and LdapServicePassword properties.

Valid Settings

Setting Description
yes The TdgssUserConfigFile.xml stores the LdapServicePassword in encrypted form
no (default) The TdgssUserConfigFile.xml stores the LdapServicePassword in plain text.

Editing Guidelines

  • To set a value, you must manually add this property to the TDGSS configuration file on needed mechanisms. See About Editing Configuration Files.
  • Edit this property on database nodes and the Unity server, if used. Also see Coordinating Mechanism Property Values for Unity.
  • This property does not encrypt the password. It is only an indicator of encryption.
  • If you want to encrypt the password, use the procedure found in Editing TdgssUserConfigFile.xml for Service Binds to generate an encrypted password for the LdapServicePassword property, and insert it into the TdgssUserConfigFile.xml, then set the LdapServicePasswordProtected property to yes to indicate that the service password is encrypted.