X.509 Certificates Ownership and Permissions - Advanced SQL Engine - Teradata Database

Security Administration

Product
Advanced SQL Engine
Teradata Database
Release Number
17.10
Published
July 2021
Language
English (United States)
Last Update
2022-02-15
dita:mapPath
ppz1593203596223.ditamap
dita:ditavalPath
wrg1590696035526.ditaval
dita:id
B035-1100
lifecycle
previous
Product Category
Teradata Vantageā„¢

When you create X.509 certificates or private keys, you must be logged on as root.

To prevent unauthorized overwriting of X.509 certificates and private key files, set the ownership and permissions as follows:

  • The certificates and private key files are owned by root and the group is tdtrusted.
  • The permissions are set to 640.

For example:

-rw-r----- 1 root     tdtrusted    0 May 21 15:07 cert