CLIENT_AUTH

Provides information about client authentication methods.

Higher values indicate higher priorities. Vertica tries to authenticate a user with an authentication method in order of priority from highest to lowest. For example:

  • A priority of 10 is higher than a priority of 5.
  • A priority 0 is the lowest possible value.
Column Name Data Type Description
AUTH_OID

INTEGER

 Unique identifier for the authentication method.
AUTH_NAME

VARCHAR

User-given name of the authentication method.
IS_AUTH_ENABLED

BOOLEAN

Indicates if the authentication method is enabled.
AUTH_HOST_TYPE

VARCHAR

The authentication host type, one of the following:

  • LOCAL
  • HOST
  • HOSTSSL
  • HOSTNOSSL
AUTH_HOST_ADDRESS

VARCHAR

If AUTH_HOST_TYPE is HOST, AUTH_HOST_ADDRESS is the IP address (or address range) of the remote host.

AUTH_METHOD

VARCHAR

Authentication method to be used.

Valid values:

  • IDENT
  • GSS
  • HASH
  • LDAP
  • REJECT
  • TLS
  • TRUST
AUTH_PARAMETERS

VARCHAR

The parameter names and values assigned to the authentication method.
AUTH_PRIORITY INTEGER The priority specified for the authentication. Authentications with higher values are used first.
METHOD_PRIORITY INTEGER

The priority of this authentication based on the AUTH_METHOD.

Vertica only considers METHOD_PRIORITY when deciding between multiple authentication methods of equal AUTH_PRIORITY.
ADDRESS_PRIORITY INTEGER

The priority of this authentication based on the specificity of the AUTH_HOST_ADDRESS, if any. More specific IP addresses (fewer zeros) are used first.

Vertica only considers ADDRESS_PRIORITY when deciding between multiple authentication methods of equal AUTH_PRIORITY and METHOD_PRIORITY.

Examples

This example shows how to get information about each client authentication method that you created: 

=> SELECT * FROM client_auth;
	auth_oid   |  auth_name  | is_auth_enabled | auth_host_type | auth_host_address | auth_method | auth_parameters | auth_priority | method_priority | address_priority
-------------------+-------------+-----------------+----------------+-------------------+-------------+-----------------+---------------+-----------------+------------------
 45035996274059694 | v_gss       | True            | HOST           | 0.0.0.0/0         | GSS         |                 |             0 |               5 |               96
 45035996274059696 | v_trust     | True            | LOCAL          |                   | TRUST       |                 |             0 |               0 |                0
 45035996274059698 | v_ldap      | True            | HOST           | 10.19.133.123/    | LDAP        |                 |             0 |               5 |              128
 45035996274059700 | RejectNoSSL | True            | HOSTNOSSL      | 0.0.0.0/0         | REJECT      |                 |             0 |              10 |               96
 45035996274059702 | v_hash      | True            | LOCAL          |                   | HASH        |                 |             0 |               2 |                0
 45035996274059704 | v_tls       | True            | HOSTSSL        | 1.1.1.1/0         | TLS         |                 |             0 |               5 |               96
(6 rows)

See Also