16.10 - Example: TDNEGO Configuration - Teradata Database

Teradata Database Security Administration

Product
Teradata Database
Release Number
16.10
Release Date
June 2017
Content Type
Administration
Security
Publication ID
B035-1100-161K
Language
English (United States)

The following shows the TDNEGO configuration in the TdgssLibraryConfigFile.xml file.

<!-- TDNEGO: Teradata Negotiated Method -->
<Mechanism Name="TDNEGO"
     ObjectId="1.3.6.1.4.1.28698.4.302.1.3"
     LibraryName="gssp2tdnego"
     Prefix="TDNEGO"
     InterfaceType="negotiate">
     <MechanismProperties
         AuthenticationSupported="yes"
         AuthorizationSupported="yes"
         SingleSignOnSupported="yes"
         GenerateCredentialFromLogon="yes"
         NegotiationSupported="yes"
         MechanismEnabled="yes"
         DefaultMechanism="no"
         DefaultNegotiatingMechanism="no"
         MechanismRank="10"
         MutualAuthentication="yes"
         ReplayDetection="yes"
         OutOfSequenceDetection="yes"
         ConfidentialityDesired="yes"
         IntegrityDesired="yes"
         />
     <!-- Mechanisms offered for negotiation: KRB5, SPNEGO, ldap, TD2 -->
     <NegotiatedMechanism ObjectId="1.2.840.113554.1.2.2" Enable="yes"/>
     <NegotiatedMechanism ObjectId="1.3.6.1.5.5.2" Enable="yes"/>
     <NegotiatedMechanism ObjectId="1.3.6.1.4.1.191.1.1012.1.20" Enable="yes"/>
     <NegotiatedMechanism ObjectId="1.3.6.1.4.1.191.1.1012.1.1.9" Enable="yes"/>
</Mechanism>