Sample Identity Map for Logging on with a UPN - Analytics Database

Sample Identity Map for Logging on with a UPN - Analytics Database - Teradata Vantage

Security Administration

Deployment

VantageCloud

VantageCore

Edition

Enterprise

IntelliFlex

VMware

Product

Analytics Database

Teradata Vantage

Release Number

17.20

Published

June 2022

Language

English (United States)

Last Update

2024-04-05

dita:mapPath

hjo1628096075471.ditamap

dita:ditavalPath

qkf1628213546010.ditaval

dita:id

zuy1472246340572

lifecycle

latest

Product Category

Teradata Vantage™

You can configure the LDAP mechanism to create an identity map for usernames that logon with a FQDN, such as user@dom1.dom2.dom3, for example:

<Mechanism Name="ldap">
    <MechanismProperties
        ...
        />
    <IdentityMap
      Match="match"
      Pattern="pattern"/>
      DatabaseName="database_name"/>
</Mechanism>

match: A Posix regular expression representing a matching rule that shows how the username is divided into sub-strings. The individual substrings are enclosed by ( ).; Example: ([^@]+)@([^\.]+)\.([^\.]+)\.([^\.]+)
pattern: The substitution rule that determines how the map extrapolates a DN from the username substrings defined in the Match attribute.; Example: uid=${1},ou=users,dc=${2},dc=${3},dc=${4}
database_name: Defines how the system rewrites the username so that the database can identify the user in a particular form.; The value ${1} identifies the user in the database using only the uid portion of the logon, and drops the ${2}, ${3}, and ${4} portions of the username.; Example: ${1}

The identity map does not require a service bind.