LDAP for Multiple Directory Services | Teradata Vantage - 17.10 - Configuring LDAP to Use Multiple Directory Services - Advanced SQL Engine - Teradata Database

Teradata Vantage™ - Advanced SQL Engine Security Administration

Product
Advanced SQL Engine
Teradata Database
Release Number
17.10
Release Date
July 2021
Content Type
Administration
Security
Publication ID
B035-1100-171K
Language
English (United States)

A network may contain multiple directory services. A directory service is made up of one or more directory servers that replicate the same directory structure.

A company with multiple directory services may or may not need to configure LDAP to address the services separately:
  • If the directory services are all in the same forest and are all visible through a Global Catalog (GC), LDAP can authenticate users to access Teradata Vantage in the GC, and no special set up is required. However, for organizations with widely scattered locations, you may find it beneficial to configure LDAP authentication for site awareness. See Configuring Site Aware Authentication in a Global Catalog.
  • Sometimes directory services are entirely separate and it is not possible to connect them through a GC, for example, when a company acquires or merges with another company. If database users must be authenticated by multiple directory services, you must configure a separate entry in the TdgssUserConfigFile.xml for each service.