16.10 - LDAP Mechanism Properties that Support Service Binds - Teradata Database

Teradata Database Security Administration

prodname
Teradata Database
vrm_release
16.10
created_date
June 2017
category
Administration
Security
featnum
B035-1100-161K

Evaluate all the LDAP mechanism properties that support service binds. You may need to configure some or all of them when implementing service binds on your system.

Configure the TdgssUserConfigFile.xml on each Teradata database served by the directory and on the Teradata Unity server, if used.
Property Setting Property Value Setting
LdapServiceBindRequired Yes/No Sets the requirement for a service bind.
  • A yes value means that TDGSS always performs a service bind.
  • A no value (the default) means that TDGSS performs a service bind only if IdentitySearch elements are present in the configuration.
LdapServiceFQDN Distinguished name Identifies the bindable object in the directory that represents the service identity, that is, a Teradata Database system or Unity server.
LdapServicePassword String If your site security policy requires a password for the service FQDN, configure a password as the value of this property.
LdapServicePasswordProtected Yes/No Enables encryption for the LDAP service password, if used.
  • Yes (the default) means that TDGSS stores the LdapServicePassword is stored in encrypted form.
  • No means that TDGSS stores the LdapServicePassword in plain text.

For detailed configuration information, see LDAP Binding Properties.