Example: Controlling Access with an Authorization Object Using User and Password Credentials

Example: Controlling Access with an Authorization Object Using User and Password Credentials - Teradata Vantage

Teradata® VantageCloud Lake

Deployment

VantageCloud

Edition

Lake

Product

Teradata Vantage

Published

January 2023

ft:locale

en-US

ft:lastEdition

2024-12-11

dita:mapPath

phg1621910019905.ditamap

dita:ditavalPath

pny1626732985837.ditaval

dita:id

phg1621910019905

Prerequisites

If not already done, log on to Analytics Database as an administrative user who can grant others privileges.
Grant the appropriate privileges to the user.
To create an authorization object, the user needs the CREATE AUTHORIZATION privileges.
Log off as the administrative user.

Create the Authorization Object

To run NOS-related commands, log on to the database as a user with the required privileges.
Create an authorization object in Analytics Database with the credentials to your external object storage.
Create the authorization object in the same database as the foreign table that uses it.
```
CREATE AUTHORIZATION authorization_object
USER 'YOUR-ACCESS-KEY-ID'
PASSWORD 'YOUR-SECRET-ACCESS-KEY';
```
See Variable Substitutions for Examples.

For example, the Teradata-supplied public object storage has an empty string for USER and PASSWORD. To create an authorization object for the public object storage, run:
```
CREATE AUTHORIZATION MyAuthObj
USER ''
PASSWORD '';
```
View the definition of the authorization object. For example:
```
SHOW AUTHORIZATION NOS_USR.MyAuthObj;
```
Note, the password is not returned in the result.

PostrequisiteIn later examples, the authorization object is linked to a foreign table and in other examples used in READ_NOS and WRITE_NOS statements.