17.10 - Message Encryption for Kerberos Authentication - Advanced SQL Engine - Teradata Database

Teradata Vantage™ - Advanced SQL Engine Security Administration

Product
Advanced SQL Engine
Teradata Database
Release Number
17.10
Published
July 2021
Language
English (United States)
Last Update
2022-02-15
dita:mapPath
ppz1593203596223.ditamap
dita:ditavalPath
wrg1590696035526.ditaval
dita:id
zuy1472246340572

For users authenticated by Kerberos (KRB5 or SPNEGO mechanism) who enable message encryption, the system uses the encryption method automatically negotiated by Kerberos, and in accordance with Internet Engineering Task Force (IETF) RFC 4121 Kerberos Version 5 Generic Security Service Application Program Interface (GSS-API).

For details on determining the encryption method when using Kerberos, see RFC 3961 and RFC 4121. The mechanism QOP is ignored.