Identity Token SETUP | TRDGTOKN - Identity Token SETUP - Call-Level Interface Version 2

Teradata® Call-Level Interface Version 2 Reference for Workstation-Attached Systems - 20.00

Deployment
VantageCloud
VantageCore
Edition
Enterprise
IntelliFlex
Lake
VMware
Product
Call-Level Interface Version 2
Release Number
20.00
Published
January 2024
ft:locale
en-US
ft:lastEdition
2024-11-15
dita:mapPath
bmn1691484839905.ditamap
dita:ditavalPath
obe1474387269547.ditaval
dita:id
fvz1470444150352
lifecycle
latest
Product Category
Teradata Tools and Utilities

With the RACF (SAF) classes enabled and configured, the setup process can continue with token generation, binding of certificate, and Identity Token Support permission configuration. Within the PROCLIB library are example batch jobs to support these steps. There is also a consolidated member in the PROCLIB library named $SETUP which contains all steps together.

Token Creation – TRDGTOKN

Teradata provides the program TRDGTOKN to support token creation, deletion, and listing.

The program supports the following functions/parms:

  • CREATE=TERADATA.TTU.PKCS11.TOKEN,APPLID=RACFJWT
  • DELETE=TERADATA.TTU.PKCS11.TOKEN
  • LIST=TOKEN
It is necessary to use the TRDGTOKN program to create your token. This should be performed by a user within the security officer role. Within member STEP1 in the PROCLIB library you will find a sample batch job that performs these functions.
You must not change the token name or the APPLID.