CLIENT_AUTH

Provides information about client authentication methods.

Provides information about client authentication methods.

Higher values indicate higher priorities. Vertica tries to authenticate a user with an authentication method in order of priority from highest to lowest. For example:

  • A priority of 10 is higher than a priority of 5.

  • A priority 0 is the lowest possible value.

Column Name Data Type Description
AUTH_OID INTEGER Unique identifier for the authentication method.
AUTH_NAME VARCHAR User-given name of the authentication method.
IS_AUTH_ENABLED BOOLEAN Indicates if the authentication method is enabled.
AUTH_HOST_TYPE VARCHAR

The authentication host type, one of the following:

  • LOCAL

  • HOST

  • HOSTSSL

  • HOSTNOSSL

AUTH_HOST_ADDRESS VARCHAR If AUTH_HOST_TYPE is HOST, AUTH_HOST_ADDRESS is the IP address (or address range) of the remote host.
AUTH_METHOD VARCHAR

Authentication method to be used.

Valid values:

  • IDENT

  • GSS

  • HASH

  • LDAP

  • REJECT

  • TLS

  • TRUST

AUTH_PARAMETERS VARCHAR The parameter names and values assigned to the authentication method.
AUTH_PRIORITY INTEGER The priority specified for the authentication. Authentications with higher values are used first.
METHOD_PRIORITY INTEGER

The priority of this authentication based on the AUTH_METHOD.

Vertica only considers METHOD_PRIORITY when deciding between multiple authentication methods of equal AUTH_PRIORITY.

ADDRESS_PRIORITY INTEGER

The priority of this authentication based on the specificity of the AUTH_HOST_ADDRESS, if any. More specific IP addresses (fewer zeros) are used first.

Vertica only considers ADDRESS_PRIORITY when deciding between multiple authentication methods of equal AUTH_PRIORITY and METHOD_PRIORITY.

IS_FALLTHROUGH_ENABLED Boolean Whether authentication fallthrough is enabled.

Examples

This example shows how to get information about each client authentication method that you created:

=> SELECT * FROM client_auth;
    auth_oid   |  auth_name  | is_auth_enabled | auth_host_type | auth_host_address | auth_method | auth_parameters | auth_priority | method_priority | address_priority
-------------------+-------------+-----------------+----------------+-------------------+-------------+-----------------+---------------+-----------------+------------------
 45035996274059694 | v_gss       | True            | HOST           | 0.0.0.0/0         | GSS         |                 |             0 |               5 |               96
 45035996274059696 | v_trust     | True            | LOCAL          |                   | TRUST       |                 |             0 |               0 |                0
 45035996274059698 | v_ldap      | True            | HOST           | 10.19.133.123/    | LDAP        |                 |             0 |               5 |              128
 45035996274059700 | RejectNoSSL | True            | HOSTNOSSL      | 0.0.0.0/0         | REJECT      |                 |             0 |              10 |               96
 45035996274059702 | v_hash      | True            | LOCAL          |                   | HASH        |                 |             0 |               2 |                0
 45035996274059704 | v_tls       | True            | HOSTSSL        | 1.1.1.1/0         | TLS         |                 |             0 |               5 |               96
(6 rows)

See also