User Authentication and Authorization | Teradata Vantage - Implementing User Authentication and Authorization - Advanced SQL Engine - Teradata Database

The primary function of Teradata Vantage security is to authenticate and authorize Vantage users. You must select, and where required configure, the authentication and authorization options for your system, as follows:

1. Evaluate authentication and authorization options and devise a strategy. See:
   • About Teradata Authentication.
   • About External Authentication.
   • About Authentication and Authorization of Middle-Tier Application Users.
2. Enable external authentication, if required. See:
   • About External Authentication Controls.
   • About External Authentication Requirements.
3. If you decide to use Kerberos authentication (KRB5 or SPNEGO mechanism), complete the required setup. See Working with Kerberos Authentication.
4. If you decide to use the JSON Web Token (JWT) authentication mechanism, complete the required setup. See Working with JWT Authentication.
5. If you decide to authenticate and/or authorize users in an LDAPv3-compliant directory, see the topics beginning with Directory Management of Database Users, and follow the setup instructions for the options you choose to implement.
6. Understand logon format requirements associated with various authentication and authorization methods. See Logging on to Teradata Vantage.

For information about authentication options for mainframe-based users, see Using External Authentication from Mainframe Clients.