Network Security Policy Implementation | Teradata Vantage - Implementation Overview - Advanced SQL Engine

Network Security Policy Implementation | Teradata Vantage - Implementation Overview - Advanced SQL Engine - Teradata Database

Security Administration

Product

Advanced SQL Engine

Teradata Database

Release Number

17.10

Published

July 2021

Language

English (United States)

Last Update

2022-02-15

dita:mapPath

ppz1593203596223.ditamap

dita:ditavalPath

wrg1590696035526.ditaval

dita:id

B035-1100

lifecycle

Product Category

Teradata Vantage™

Review network security policy options. See Network Security Policy.
Determine whether to use Teradata directory schema extensions or native directory schema to define security policy objects in the directory, and if necessary install Teradata schema extensions. See Directory Schema Considerations.
Configure the top level security policy objects in the directory. See Configuring Top-Level Security Policy Objects.
Configure the needed security policies:
- For mechanism policies, see Configuring a Security Mechanism Policy.
- Review the function of confidentiality and integrity QOP policies. See Confidentiality and Integrity QOP Policy.
- Configure ipNetworks and Network Groups for use in assigning QOP and Options policies. See Configuring ipNetworks and Network Groups.
- For integrity, see Configuring an Integrity QOP Policy.
- For confidentiality, see Configuring a Confidentiality QOP Policy.
- Review the function of options policies and configure any needed options. See Configuring Options Policies.
Review the effects of using RequireConfidentiality with QOP. See Requiring Confidentiality.
Enable policies by configuring security policy attributes in the TDGSS user configuration file. See Configuring Security Policies in the TdgssUserConfigFile.xml.
Monitor logs to detect QOP security policy violations and identify violators. See Monitoring QOP Security Policy.