System Processing of Global and Local Policies - Advanced SQL Engine

System Processing of Global and Local Policies - Advanced SQL Engine - Teradata Database

Security Administration

Product

Advanced SQL Engine

Teradata Database

Release Number

17.05

17.00

Published

September 2020

Language

English (United States)

Last Update

2021-01-23

dita:mapPath

ied1556235912841.ditamap

dita:ditavalPath

lze1555437562152.ditaval

dita:id

B035-1100

lifecycle

Product Category

Teradata Vantage™

TDGSS follows certain rules when determining security policy for a session. When a user logs on to Vantage:

If the authentication mechanism is TD2, TDGSS first looks for a global policy and enforces any policies that apply to the user. Local policies do not apply to TD2 users.
If the authentication mechanism is not TD2, TDGSS searches each <service> element for a <policy> element (local policy).
1. If TDGSS finds a local policy that applies to the user, it enforces the policy.
2. If TDGSS does not find a local policy structure in the authenticating service, it searches for a global policy and enforces any global policy that applies to the user.
If the TdgssUserConfigFile.xml contains neither a local nor a global policy, the policy enforcement feature is disabled regardless of what may be configured in the directory.