Configuring Policy-Related Properties for a Local Security Policy - Advanced SQL Engine - Teradata Database

Security Administration

Product
Advanced SQL Engine
Teradata Database
Release Number
17.05
17.00
Published
September 2020
Language
English (United States)
Last Update
2021-01-23
dita:mapPath
ied1556235912841.ditamap
dita:ditavalPath
lze1555437562152.ditaval
dita:id
B035-1100
lifecycle
previous
Product Category
Teradata Vantage™

A local security policy is contained in a service and applies only to that service. For example:

<Services>
      <Service
         Id="domain1" ... />
      <Service
         Id="domain2" ... />
      <Service
         Id="domain3" ... />
         <Policy
            ..."/>
         </Policy>
      </Service>

If the TDGSSUserConfigFile.xml already contains <Service> elements configured for LDAP authentication or authorization (see Configuring LDAP to Use Multiple Directory Services), you can add any necessary <Policy> elements to the existing Service elements.

Attribute Name Required Description
LdapPolicyFQDN Yes Locates the policy container
LdapNetworkBaseFQDN No Locates the container for ipNetwork entries.

If LdapNetworkBaseFQDN is not provided, the system uses the value in the LdapBaseFQDN attribute for the containing service.

If no value is present for either LdapBaseFQDN or LdapNetworkBaseFQDN, the system does not use the client IP address for determining the applicable QOP policy or options.