Load Ingest Data
Results 1 to 1 of 1

Thread: AIS support for client identity impersonation on Tandem Security

  1. #1
    Costi Zaboura is offline World Wide Support Manager
    Join Date
    Aug 2006
    Posts
    300
    Rep Power
    14

    AIS support for client identity impersonation on Tandem Security

    Some use cases require that when client access data on Tandem via AIS, that the access would be from a server running in the client identity (a.k.a impersonation).

    In order to set up client impersonation, the daemon workspace setting (for the workspace that requires impersonation) must have the "Server Account" left empty.

    Under this setting, the user and password provided by the client upon connection is used for changing the identity under which the server runs on the Tandem.

    Depending on the security policy in effect on the Tandem and on the privileges of the account running the daemon, the daemon might not be able to perform the impersonation when starting the server. For such cases, the temp-feature ‘allowBlindImpersonation’ can be defined to ‘true’ in which case, the server identity will be changed by the server process upon startup (so the servers are started with the daemon identity and are then switched to the loged-on user identity).
    Last edited by DrorHarari; 11-20-2008 at 10:43 PM. Reason: More information
    To Find Out more About Attunity Technology:
    Attunity
    or:
    Contact Us

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •