17.10 - Configuring Policy-Related Properties for a Local Security Policy - Advanced SQL Engine - Teradata Database

Teradata Vantage™ - Advanced SQL Engine Security Administration

Product
Advanced SQL Engine
Teradata Database
Release Number
17.10
Release Date
July 2021
Content Type
Administration
Security
Publication ID
B035-1100-171K
Language
English (United States)

A local security policy is contained in a service and applies only to that service. For example:

<Services>
      <Service
         Id="domain1" ... />
      <Service
         Id="domain2" ... />
      <Service
         Id="domain3" ... />
         <Policy
            ..."/>
         </Policy>
      </Service>

If the TDGSSUserConfigFile.xml already contains <Service> elements configured for LDAP authentication or authorization (see Configuring LDAP to Use Multiple Directory Services), you can add any necessary <Policy> elements to the existing Service elements.

Attribute Name Required Description
LdapPolicyFQDN Yes Locates the policy container
LdapNetworkBaseFQDN No Locates the container for ipNetwork entries.

If LdapNetworkBaseFQDN is not provided, the system uses the value in the LdapBaseFQDN attribute for the containing service.

If no value is present for either LdapBaseFQDN or LdapNetworkBaseFQDN, the system does not use the client IP address for determining the applicable QOP policy or options.