17.10 - Message Encryption for Kerberos Authentication - Advanced SQL Engine - Teradata Database

Teradata Vantage™ - Advanced SQL Engine Security Administration

Product
Advanced SQL Engine
Teradata Database
Release Number
17.10
Release Date
July 2021
Content Type
Administration
Security
Publication ID
B035-1100-171K
Language
English (United States)

For users authenticated by Kerberos (KRB5 or SPNEGO mechanism) who enable message encryption, the system uses the encryption method automatically negotiated by Kerberos, and in accordance with Internet Engineering Task Force (IETF) RFC 4121 Kerberos Version 5 Generic Security Service Application Program Interface (GSS-API).

For details on determining the encryption method when using Kerberos, see RFC 3961 and RFC 4121. The mechanism QOP is ignored.