Teradata Database Generic Security Services (TDGSS) Message 0xe3000235 - 0xe3000235 - Analytics Database - Teradata Vantage

Message

The encrypted service password uses a non-FIPS compliant algorithm.

Explanation

The service password was encrypted using an older tdspasswd utility that does not produceFIPS-compliant encrypted passwords. Decryption is impossible since FIPS mode disables thedigest algorithm used to generate the encryption key. The service password can be foundin an LdapServicePassword property in the LDAP mechanism's mechanism properties or in aService element in the LdapConfig section.

Generated By

TDGSS LDAP authentication method.

For Whom

System Support Representative.

Notes

None

Remedy

Identify the location of the non-compliant password(s) using the run_tdgssconfig command.Once the location has been identified, regenerate the password using the tdspasswdutility and replace the non-compliant encrypted password with the new value returned bytdspasswd. Repeat for every non-compliant password identified by run_tdgssconfig.Finally, execute run_tdgssconfig to bring the new passwords into TDGSS. A TPA reset isnot required.