16.10 - LdapClientRebindAuth - Teradata Database

Teradata Database Security Administration

prodname
Teradata Database
vrm_release
16.10
created_date
June 2017
category
Administration
Security
featnum
B035-1100-161K

When the LdapClientReferrals property is set to chase referrals, LDAP establishes a new connection to the directory server and continues the searches on that connection, based on the referral. The LdapClientRebindAuth property tells the authentication mechanism how to bind to the new (referred) connection.

Valid Settings

Setting Description
yes (default) The authentication mechanism uses the user credential info to authenticate the new search connection before searching.
no The authentication mechanism does not authenticate the new search connection with user credential info, but instead uses an anonymous connection to do the search.

Supporting Mechanisms for LdapClientRebindAuth

The LdapClientRebindAuth appears by default in the library configuration file, for the LDAP mechanism only.

Mechanisms that are not listed in the table do not support this property. The Property Editable column indicates if the setting for a property may be edited.
Mechanism Property Editable?
KRB5 May Be Edited
SPNEGO
LDAP
To set a value, you must manually add this property to the TdgssUserConfigFile.xml for each mechanism that uses it. See About Editing Configuration Files.

Editing Guidelines

  • Edit this property on database nodes and on the Unity server, if used. Also see Coordinating Mechanism Property Values.
  • Edit this property to specify the how TDGSS should handle referrals, when the LdapClientReferrals property is set to yes.