User Mapping Usage Notes | Teradata QueryGrid - User Mapping Usage Notes - Teradata QueryGrid
Teradata® QueryGrid™ Installation and User Guide
Product
Teradata QueryGrid
Release Number
2.19
Published
July 2022
Language
English (United States)
Last Update
2022-07-28
dita:mapPath
jpf1654813554544.ditamap
dita:ditavalPath
ft:empty
dita:id
lxg1591800469257
Product Category
Analytical Ecosystem
Teradata QueryGrid Overview
Welcome to Teradata QueryGrid
Teradata QueryGrid Description
Teradata QueryGrid Components
Active, Pending, and Previous Teradata QueryGrid Configurations
Teradata QueryGrid Security
Teradata QueryGrid 1.x and 2.x Connectors
Teradata QueryGrid in the Teradata Public Cloud
Preparing for Software Installation
Preinstall Checks
Prerequisites
QueryGrid Manager
QueryGrid Manager Sizing
QueryGrid Manager Locality and High Availability Guidelines
QueryGrid Proxy Considerations
Multiple QueryGrid Manager Cluster Considerations
Fabric
Network Requirements
Java Requirements
Single or Multiple Bridge Considerations
Fabric Usage Notes
Port Availability
Confirming the QueryGrid Functions
Bridge Node Guidelines
Oracle Connector Driver Node Guidelines
BigQuery Connector Driver Node Guidelines
Generic JDBC Connector Driver Node Guidelines
QueryGrid Installation Workflow
Obtaining a Change Control Number
Downloading Required Packages
Software Packages
Installing and Configuring Software
Installing and Configuring Teradata QueryGrid Manager
Installing Teradata QueryGrid Manager
Clustering Deployed QueryGrid Manager Instances
Creating a Join Token
Multiple QueryGrid Manager Clusters
Import System
Set Primary Cluster
Default publicAddress, bindAddress, and clusterAddress Overview
Modifying the publicAddress, bindAddress, and clusterAddress
Adding Aliases for Other Servers
Setting Up Teradata QueryGrid in the Viewpoint Administration Portlets
Installing a QueryGrid Root Certificate
Adding QueryGrid
Adding the QueryGrid Portlet to the Viewpoint Portal
Changing a Service Account Password
Updating the Teradata QueryGrid Manager Password in the Monitored Systems Portlet
Configuring Teradata QueryGrid in the QueryGrid Portlet
Uploading Connector Software
Uploading Generic JDBC Connector Software
Uploading Fabric Software
Uploading Node Software
Adding a Data Center
Adding a Data Source System
Import a Data Source System
Add Nodes to a System
Adding Nodes Automatically
Adding Nodes Manually
Automatic Deployment of QueryGrid on Scalable Clusters
Automatically Deploy QueryGrid on Hortonworks HDP
Upgrading or Downgrading QueryGrid Deployment Scripts on HDP
Automatically Deploy QueryGrid on Cloudera CDH/CDP
Upgrading or Downgrading QueryGrid Deployment Scripts on CDH/CDP
Automatically Deploy QueryGrid on Azure HDInsight
Upgrading or Downgrading QueryGrid Deployment Scripts on HDInsight
Automatically Deploy QueryGrid on Amazon EMR
Upgrading or Downgrading QueryGrid Deployment Scripts on EMR
Automatically Deploy QueryGrid on Google Cloud Dataproc
Upgrading or Downgrading QueryGrid Deployment Scripts on Dataproc
Automatically Deploy QueryGrid on Google Cloud Instance Group
Upgrading or Downgrading QueryGrid Deployment Scripts on Google Cloud Instance Group
Automatically Deploy QueryGrid on Azure Virtual Machine Scale Set
Upgrading or Downgrading QueryGrid Deployment Scripts on Azure VMSS
Automatically Deploy QueryGrid on AWS Auto Scaling Group
Upgrading or Downgrading QueryGrid Deployment Scripts on AWS ASG
Automatically Deploy QueryGrid on Presto on AWS CFT
Upgrading or Downgrading QueryGrid Deployment Scripts on Presto on AWS CFT
Automatically Deploy QueryGrid on Presto on Kubernetes (GKE or AKS)
Configuring Virtual IP Addresses
Adding a Dedicated Bridge System
Adding a Bridge System Using Data Source Nodes
Configuring QueryGrid for a Teradata FICON Node
Adding a Fabric
Adding a Network
Adding a Communication Policy
Configuring and Using Links
Adding Connectors and Links
Adding a Target Connector
Configuring the Target Connector
Configuring the Teradata Target Connector and Data Source
Teradata Target Connector Security Guidelines
Configuring the Presto Target Connector and Data Source
Completing the Presto Connector Installation with the QueryGrid Portlet (Viewpoint 16.20 and later)
Completing the Presto Connector Installation by Running the Installation Script Manually
Creating Presto Target Tasks for Presto on Kubernetes (GKE and AKS)
Presto Target Connector Security Guidelines
Presto Target Connector Privileges
Configuring the Hive Target Connector and Data Source
Configuring the Primary Group for Hive Users
Configuring the Hive Class Path (CDH Only)
Configuring the Hive Connector for Use with a Custom Hadoop Library Path or Custom JAR Path
Hadoop JAR Files
Configuring the Hive Connector for Use with LLAP
Enabling the Operation Log
Hive Target Connector Security Guidelines
Hive Target Connector Privileges
Verifying Permission to Run kinit (Hive)
Updating Hive Classpath after Upgrading the Hive Connector
Configuring the Spark SQL Target Connector and Data Source
Configuring a Group for Spark Connector Users for Logging Purposes
Creating an HDFS Directory for the Spark SQL Connector
Configuring the Spark SQL Target Connector User
Spark SQL Target Connector Security Guidelines
Verifying Permission to Run kinit (Spark SQL)
Restarting the Spark Thrift Server after Upgrading the Spark Connector
Configuring the Oracle Target Connector and Data Source
Oracle Target Connector Security Guidelines
Oracle Target Connector Privileges
Configuring the BigQuery Target Connector and Data Source
BigQuery Target Connector Security Guidelines
Configuring the Generic JDBC Target Connector
Generic JDBC Connector Security Guidelines
Running a Connector Diagnostic Check
Adding an Initiator Connector
Adding a Link
Running a Link Diagnostic Check
Running a Link Bandwidth Test
Using Links
Using a Teradata-to-TargetConnector Link
Completing the Teradata Initiator Connector Installation on Teradata System Nodes (Viewpoint 16.20 and later)
Required Teradata Initiator Connector Privileges
Teradata Initiator Connector Security and User Sessions
Authorization Objects
Configuring a Foreign Server and Granting Privileges for Teradata-to-TargetConnector Links
User and Role Mapping
Adding a User Mapping
User Mapping Usage Notes
Setting Up User Mapping (Oracle Only)
Adding a Role Mapping
Role Mapping Usage Notes
Setting Up Role Mapping
Validating a Teradata-to-TargetConnector Link
SQL Syntax for the Teradata Initiator Connector
Target Pushdown Conditions
Remote Table Optimization (RTO)
RTO Process
Default Push Profiles
Push Profile Attributes
Push Profile Defaults
Push Profile Macros
Custom Push Profiles
Creating a Custom Push Profile
Kerberos Single Sign-On
SQL Command Reference for the Teradata Initiator Connector
ALTER FOREIGN SERVER
Syntax Elements (ALTER FOREIGN SERVER)
Modify Options
Drop Options
Required Privileges (ALTER FOREIGN SERVER SQL)
BEGIN LOGGING
COMMENT (Comment Placing Form)
Syntax Element
CREATE AUTHORIZATION and REPLACE AUTHORIZATION
Syntax Elements (CREATE/REPLACE AUTHORIZATION)
Usage Notes (CREATE/REPLACE AUTHORIZATION)
Examples of Creating and Replacing the Authorization
CREATE FOREIGN SERVER
Syntax Elements (CREATE/ALTER FOREIGN SERVER)
USING
DO IMPORT WITH
DO EXPORT WITH
Required Privileges (CREATE FOREIGN SERVER)
Usage Notes (CREATE FOREIGN SERVER)
Examples: Using CREATE FOREIGN SERVER
DROP FOREIGN SERVER
Syntax Elements
server_name (DROP FOREIGN SERVER)
Example: Using DROP FOREIGN SERVER
END LOGGING
Syntax Elements
ON operation
EXPLAIN
GRANT and REVOKE
HELP FOREIGN
Syntax Elements (HELP FOREIGN)
Examples of Using HELP FOREIGN
Required Privileges (HELP FOREIGN)
INSERT Syntax and the Teradata Connector
SELECT Syntax and the Teradata Connector
SHOW FOREIGN SERVER
Syntax Elements
TD_SERVER_DB.
server_name (SHOW FOREIGN SERVER)
Required Privileges (SHOW FOREIGN SERVER)
Example of Using SHOW FOREIGN SERVER
Overriding Session Properties
Teradata QueryGrid Stored Procedures, Functions, and Table Operators
ExecuteForeignSQL
Table Operators and Function
Known Limitations (Teradata-to-TargetConnector)
Using a Presto-to-Teradata Link
Disabling Dynamic Filtering
Defining the Initiator Catalog Properties File
Uploading the Initiator Catalog File for Presto on AWS CFT
Presto Initiator Tasks for Presto on Kubernetes
Setting Up User Mapping
Validating a Presto-to-Teradata Link
SQL Syntax for the Presto Initiator Connector
SQL Command Reference for the Presto Initiator Connector
SELECT Syntax for the Presto Connector
INSERT Syntax for the Presto Connector
SHOW Syntax for the Presto Connector
Overriding Session Properties (Presto)
Known Limitations (Presto-to-Teradata)
Using a Hive-to-Teradata Link
Configuring a Non-Native Table for Hive-to-Teradata
Setting Up User Mapping
Validating a Hive-to-Teradata Link
SQL Syntax for the Hive Initiator Connector
SQL Command Reference for the Hive Initiator Connector
DESCRIBE Syntax for the Hive Initiator Connector
EXPLAIN Syntax for the Hive Initiator Connector
INSERT Syntax for the Hive Initiator Connector
SELECT Syntax for the Hive Initiator Connector
SHOW Syntax for the Hive Initiator Connector
Overriding Session Properties (Hive)
Known Limitations (Hive-to-Teradata)
Using a Spark SQL-to-Teradata Link
Starting Scala REPL
Configuring a Foreign Server for Spark SQL-to-Teradata
Setting Up User Mapping
Validating a Spark SQL-to-Teradata Connector Link
Syntax for the Spark SQL Initiator Connector
Foreign Server Library API Reference for the Spark SQL Initiator Connector
Constructor
Creating a New Foreign Server Object
Restoring an Existing Foreign Server Object
Static Methods
dropForeignServer
getDatasetFromSql
showForeignServers
sql
EXPLAIN Syntax for the Spark SQL Initiator Connector
INSERT Syntax for the Spark SQL Initiator Connector
SELECT Syntax for the Spark SQL Initiator Connector
Instance Methods
create
describe
drop
show
showColumns
showSchemas
showTables
Overriding Session Properties (Spark SQL)
Known Limitations (Spark-to-Teradata)
Additional References
Data Dictionary Views for Teradata QueryGrid
Query Concurrency on Teradata Vantage
Tuning Query Concurrency on Teradata Vantage
Using APIs to Monitor Queries Between Teradata and a Foreign Server
Migrating 1.x Teradata Foreign Server Definitions to 2.x Teradata Connectors
Connector and Link Properties
Teradata Connector and Link Properties
Presto Connector and Link Properties
Hive Connector and Link Properties
Spark SQL Connector and Link Properties
Oracle Connector and Link Properties
BigQuery Connector and Link Properties
Generic JDBC Connector and Link Properties
Data Type Mapping for Teradata QueryGrid Connectors
Teradata Data Type Mapping
Presto Data Type Mapping
Hive Data Type Mapping
Spark SQL Data Type Mapping
Oracle Data Type Mapping
BigQuery Data Type Mapping
Generic JDBC Data Type Mapping
Managing QueryGrid
Modifying an Existing QueryGrid Configuration
Working with Active, Pending, or Previous Versions
Replacing Active Network Versions with Pending or Previous Versions
Replacing Active Communication Policies Versions with Pending or Previous Versions
Replacing Active Fabrics, Connectors, and Links Versions with Pending or Previous Versions
Editing a Fabric
Editing a Connector
Editing a Link
Editing a Data Center
Editing a System
Editing a Network
Editing a Communication Policy
Editing a User Mapping
Teradata QueryGrid Monitoring, Logging, and Error Handling
Fabric Overview
Viewing a Fabric Overview
Viewing Component Details
Component Details
Viewing Components with the Navigation Panel
Issues
Viewing Issues History
Issues Details
Deleting Multiple Issues
Monitoring User Queries Between Local and Remote Servers
Logging and Error Handling
Audit Log
Troubleshooting
Solutions for Job Problems
Administrative Tasks
Teradata QueryGrid Manager Settings and Account Management
Managers
Managers Tab
Editing Manager Settings
Service Accounts Tab
Adding a Service Account
Resetting a Service Account Password
Settings Tab
Restarting a Fabric
Enabling Automatic Node Deletion
Deleting Multiple Nodes
Resetting Teradata QueryGrid Manager to Default Settings
Removing Teradata QueryGrid Manager from a Cluster
Backup and Restore
Backup
Restore
Run a Post-Backup Script
Migrating QueryGrid Manager to a New Server
Overview of Merging QueryGrid Manager Clusters
Merging QueryGrid Manager Clusters
Separating QueryGrid Manager Clusters
QueryGrid Manager RESTful APIs
Installing/Uninstalling a Custom Server Certificate
Certificate Authority Rotation
Upgrading Software
Upgrading QueryGrid
Teradata QueryGrid Upgrade Overview
Upgrading Teradata QueryGrid Manager
Upgrading Teradata QueryGrid Node Software
Upgrading Teradata QueryGrid Connectors and Fabrics
Removing Old Software Versions from Teradata QueryGrid Manager
QueryGrid Portlet Metrics
Communication Policies Metrics
Connector Diagnostic Check Metrics
Connector Software Metrics
Connectors Metrics
Data Centers Metrics
Fabric Software Metrics
Fabrics Metrics
Issues History Metrics
Issues Metrics
Link Bandwidth Test Metrics
Links Metrics
Managers Metrics
Networks Metrics
Node Details Metrics
Node Installation Status Metrics
Node Software Metrics
Node Status Metrics
Roles Metrics
Service Account Metrics
System Metrics
System Nodes Metrics
User and Role Mappings Metrics
Users Metrics
QueryGrid Portlet Table and Row Actions
Table Actions
Row Actions
How to Read Syntax
Additional Information
Changes and Additions
Supported Releases
Teradata Links
Related Documentation
Teradata-to-Teradata Trusted authentication uses the mapped remote user (instead of the initiator local user) for proxyuser= in the QueryBand; JDBC connection authentication still uses the authUser.
When logged in as initiatorUser on the initiating database, submitting a query without a database name such as SELECT * FROM table@FS generates the query SELECT * FROM initiatorUser.table and the target connector modifies the query to use SELECT * FROM mappedRemoteUser.table on the remote.
Teradata-to-Presto None authentication uses the mapped remote user (instead of the initiator local user) for user= in the JDBC URL.It does not modify the query.
Teradata-to-Hive Trusted Kerberos authentication uses the mapped remote user (instead of the initiator local user) for hive.server2.proxy.user= in the JDBC URL.
None authentication uses the mapped remote user (instead of the initiator local user) for the JDBC connection authentication.It does not modify the query.
Teradata-to-Spark None authentication uses the mapped remote user (instead of the initiator local user) for the JDBC connection authentication.It does not modify the query.
Teradata-to-Oracle OS authentication uses the mapped remote user (instead of the authUser).
It does not modify the query.