Creating an Active Directory User for Each Node - Analytics Database

Creating an Active Directory User for Each Node - Analytics Database - Teradata Vantage

Security Administration

Deployment

VantageCloud

VantageCore

Edition

Enterprise

IntelliFlex

VMware

Product

Analytics Database

Teradata Vantage

Release Number

17.20

Published

June 2022

Language

English (United States)

Last Update

2024-04-05

dita:mapPath

hjo1628096075471.ditamap

dita:ditavalPath

qkf1628213546010.ditaval

dita:id

zuy1472246340572

lifecycle

latest

Product Category

Teradata Vantage™

Create an Active Directory user for each Teradata Vantage node you added to DNS in Adding a Database Node to the Windows DNS. This step is necessary in determining the Service Principal Name (SPN).

The Active Directory user for each database node must have a password. Teradata recommends that you use a strong password. If site security policy allows it, you can use the same password for all node users.

On the Active Directory server, select Start > Programs > Administrative Tools > Active Directory Users and Computers.
Right-click on the OU where the user is to be created.
Select New > User.
In the dialog box, enter the name of the node for both User logon name and First name. Use the names assigned in step 4 of Creating a Computer Component for Database Nodes Server, for example: tdExample1-1.
Click Next.
Enter a password and reenter it to confirm.
If site policy allows it, check the Password never expires box. Otherwise, check User cannot change password.
Click Next.
Repeat this procedure for each node of each Teradata Vantage system that is served by the KDC.

If you change the passwords for the users you created, for example, because password change is required by site security policy, you must also:

Regenerate the keys. See Running ktpass to Create the Kerberos Keys.
Re-install them on the nodes. See Installing the Kerberos Keys.