17.20 - Installing Schema Extensions on NetIQ eDirectory - Analytics Database - Teradata Vantage

Teradata Vantage™ - Analytics Database Security Administration - 17.20

Deployment
VantageCloud
VantageCore
Edition
Enterprise
IntelliFlex
VMware
Product
Analytics Database
Teradata Vantage
Release Number
17.20
Published
June 2022
Language
English (United States)
Last Update
2023-03-07
dita:mapPath
hjo1628096075471.ditamap
dita:ditavalPath
qkf1628213546010.ditaval
dita:id
zuy1472246340572
  1. On the Teradata Vantage server, navigate to TDGSS/etc.
  2. Run the ldapmodify utility, bundled with TDGSS, to install the Teradata schema extensions on a directory server running NetIQ eDirectory.
    Specify simple binding for running the ldapmodify command, and also the recommended TLS protection, to ensure a secure and successful schema installation. You may need to do additional configuration of TLS on the computer containing the schema extension files to ensure presence of the certificate chain. For information, see Using TLS with a Directory Server.

    Customize the following ldapmodify command to install the Teradata schema extension files you need, based on the protection scheme and schema file name. Install one schema file for each command.

    For example, to install the main Teradata schema extension file:
    • With a connection to the directory server that uses simple binding and TLS protection:
      ../bin/ldapmodify -x -D admin_DN -W -H ldap://dir_server -Z -f tdat.edir.schema
    • With a connection to the directory server without protection, that is, in plain text (not recommended):
      ../bin/ldapmodify -x -D admin_DN -W -H ldap://dir_server -f tdat.edir.schema
      Installation of other schema extensions is similar.
    -x
    Specifies simple binding.
    -D admin_DN
    Specifies the DN of a user with administrative privileges in the directory.
    -W
    Causes ldapmodify to prompt for the password of the user identified in -D.
    -H
    Specifies the ldap server naming convention according to binding type:
    • For TLS protection (requires concurrent use of the -Z option):

      ldap://server/

    -Z
    Requests TLS protection and requires a successful response before continuing.
    -f
    Specifies the name of the schema extension file, for example, tdat.edir.schema (base schema).
Like Active Directory, eDirectory uses dynamic schema updates, so you do not have to restart the system after installation of the schema extensions. eDirectory also automatically updates all directories in a replicated environment.