16.10 - Determining the SPN for Each Node and Unity Server - Teradata Database

Teradata Database Security Administration

Product
Teradata Database
Release Number
16.10
Release Date
June 2017
Content Type
Administration
Security
Publication ID
B035-1100-161K
Language
English (United States)

Teradata clients use Service Principal Names (SPNs) to specify the Teradata Database node or Unity server to which they want to connect.

SPNs use the following format:

SERVICE_NAME/instance@REALM

where:

Term Example Value Description
SERVICE_NAME TERADATA Requests the service, that is, a Teradata Database or Unity server.
instance tdatsysa1-1.corp.teradata.com

or

unity1.corp.teradata.com

Specifies the Fully Qualified Domain Name (FQDN) for a database node or Unity server, composed of:

The domain information can include one or more additional sub-domain specifications if required to uniquely locate the node or Unity server.

REALM CORP.TERADATA.COM The name of the Kerberos realm containing the node or Unity server.
The realm information must match the Windows domain exactly including case.

The realm specified for this term can include one or more additional sub-realm specifications if required to uniquely identify the realm.

Determine the SPNs for all nodes and Unity servers defined in step 4 of Creating a Computer Component for Database Nodes and Unity Server, for all Teradata Database systems and Unity servers served by the KDC. Retain the SPN information for use in Running ktpass to Create the Kerberos Keys.