16.10 - Teradata Directory Objects - Teradata Database

Teradata Database Security Administration

prodname
Teradata Database
vrm_release
16.10
created_date
June 2017
category
Administration
Security
featnum
B035-1100-161K

After you install Teradata schema extensions in a supported directory, you can create several objects that can link directory users to Teradata Database users, roles, and profiles.

Object Type Description Class
tdatRootNode Parent object for all tdatSystem objects. The directory administrator determines the value for cn attribute. Required
tdatSystem Identifies a Teradata Database system or Unity server, where cn=system_name.

The tdatSystem object is the parent of the Teradata schema objects that define the LDAP authorization structure and mappings to directory users.

The tdatSystem object maybe named for a single system, but multiple systems that use the same authorization structure can specify the same tdatSystem object.
Required
tdatContainer tdatContainer objects contain individual Teradata user, role, profile, and IP filter objects. Valid containers are:
  • cn=users
  • cn=profiles
  • cn=roles
  • cn=ipfilters (optional)
Required (except as noted)
tdatUser Describes a Teradata Database user, where cn=user_name.
tdatRole Describes a Teradata Database role, where cn=role_name. Optional
tdatProfile Describes a Teradata Database profile, where cn=profile_name.
tdatIPFilter Describes a Teradata Database IP filter, where cn=filter_name.