16.10 - Configuring Policy-Related Properties for a Local Security Policy - Teradata Database

Teradata Database Security Administration

prodname
Teradata Database
vrm_release
16.10
created_date
June 2017
category
Administration
Security
featnum
B035-1100-161K

A local security policy is contained in a service and applies only to that service. For example:

<Services>
      <Service
         Id="domain1" ... />
      <Service
         Id="domain2" ... />
      <Service
         Id="domain3" ... />
         <Policy
            ..."/>
         </Policy>
      </Service>

If the TDGSSUserConfigFile.xml already contains <Service> elements configured for LDAP authentication or authorization (see Configuring LDAP to Use Multiple Directory Services), you can add any necessary <Policy> elements to the existing Service elements.

Attribute Name Required Description
LdapPolicyFQDN Yes Locates the policy container
LdapNetworkBaseFQDN No Locates the container for ipNetwork entries.

If LdapNetworkBaseFQDN is not provided, the system uses the value in the LdapBaseFQDN attribute for the containing service.

If no value is present for either LdapBaseFQDN or LdapNetworkBaseFQDN, the system does not use the client IP address for determining the applicable QOP policy or options.