16.10 - Determining the SPN for Each Node and Unity Server - Teradata Database

Teradata Database Security Administration

prodname
Teradata Database
vrm_release
16.10
created_date
June 2017
category
Administration
Security
featnum
B035-1100-161K

Teradata clients use Service Principal Names (SPNs) to specify the Teradata Database node or Unity server to which they want to connect.

SPNs use the following format:

SERVICE_NAME/instance@REALM

where:

Term Example Value Description
SERVICE_NAME TERADATA Requests the service, that is, a Teradata Database or Unity server.
instance tdatsysa1-1.corp.teradata.com

or

unity1.corp.teradata.com

Specifies the Fully Qualified Domain Name (FQDN) for a database node or Unity server, composed of:

The domain information can include one or more additional sub-domain specifications if required to uniquely locate the node or Unity server.

REALM CORP.TERADATA.COM The name of the Kerberos realm containing the node or Unity server.
The realm information must match the Windows domain exactly including case.

The realm specified for this term can include one or more additional sub-realm specifications if required to uniquely identify the realm.

Determine the SPNs for all nodes and Unity servers defined in step 4 of Creating a Computer Component for Database Nodes and Unity Server, for all Teradata Database systems and Unity servers served by the KDC. Retain the SPN information for use in Running ktpass to Create the Kerberos Keys.