17.20 - System Processing of Security Policies - Analytics Database - Teradata Vantage

Teradata Vantage™ - Analytics Database Security Administration - 17.20

Deployment
VantageCloud
VantageCore
Edition
Enterprise
IntelliFlex
VMware
Product
Analytics Database
Teradata Vantage
Release Number
17.20
Published
June 2022
Language
English (United States)
Last Update
2023-03-07
dita:mapPath
hjo1628096075471.ditamap
dita:ditavalPath
qkf1628213546010.ditaval
dita:id
zuy1472246340572

When a user logs on to Teradata Vantage, TDGSS checks the <LdapConfig> section of the TdgssUserConfigFile.xml for <Policy> elements. A <Policy> element found in the <LdapConfig> directs TDGSS to a directory object that is the parent of a security policy configuration. TDGSS enforces any applicable policies that it finds in the directory.

If a QOP-related policy or option applies to a session that logs on from a pre-14.10 client, the system does not permit the logon, except when:
The system determines the security policy for a session based upon client settings, such as a client request for confidentiality or integrity, combined with other applicable security policy.
  • In the absence of an applicable QOP or option policy, a request for confidentiality or integrity on the client uses the DEFAULT QOP.
  • If multiple QOP policies apply to the session, the strongest QOP takes precedence.