During installation of Teradata Vantage, the system automatically creates the following default OS-level security structure.
|Default User or Group||Description|
|teradata||Advanced SQL Engine runs as the teradata user, which is a member of the tdtrusted group.|
|tdatuser||Runs UDFs in protected mode and is a member of the tdatudf group.|
|tdtrusted||Has permission to run OS-level processes and utilities, and provides this permission to member users:
Although you can run OS-level utilities and processes as root, Teradata recommends that for secure operation you severely limit root access and create individual administrative user accounts in the tdtrusted group to run Teradata utilities and other OS-level functions.
For information on starting utilities that need OS-level of access, see Teradata Vantage™ - Database Utilities, B035-1102.
|tdatudf||Has permission to run UDFs in protected mode and provides this permission to member users:
Although most OS-level tasks can be run by the users defined in the table above, you must use root access to:
- Install a new version of Teradata Vantage or Advanced SQL Engine
- Start the database when it is down
If your site security policy requires an alternative OS-level access strategy, contact your Teradata Customer Service representative for assistance.