User authentication rules
User authentication rules determine which users and from which addresses are allowed to connect to a cluster, as well as which databases they can access.
You can:
Warning
The rule priority depends on the order of lines: rules are read from top to bottom with the first suitable rule applied. If authentication based on the first suitable rule fails, other rules are not applied.
Adding rules
-
Go to the folder page
and select Managed Service for Greenplum. -
Click the cluster name and select the
User authentication tab. -
Click Edit rules.
-
Click
Add rule and set its parameters:- Type: Connection type.
- Database: Name of the database to connect to. You cannot specify system databases.
- User: Name of the database user or user group. You cannot specify system users.
- Address (CIDR/FQDN): Host FQDN or IP range in CIDR notation to connect to the database from.
- Method: Authentication method.
For more information about the parameters, see Authentication rule settings.
-
To add another rule, click
Add rule once again. -
Click Save.
Note
The default rule is added automatically at the end of the list; it allows authentication for all users in any database and from any host using the md5
method (password-based authentication).
Editing rules
-
Go to the folder page
and select Managed Service for Greenplum. -
Click the cluster name and select the
User authentication tab. -
Click Edit rules and update the rule parameters:
- Type: Connection type.
- Database: Name of the database to connect to. You cannot specify system databases.
- User: Name of the database user or user group. You cannot specify system users.
- Address (CIDR/FQDN): Host FQDN or IP range in CIDR notation to connect to the database from.
- Method: Authentication method.
For more information about the parameters, see Authentication rule settings.
-
Click Save.
Moving a rule
- Go to the folder page
and select Managed Service for Greenplum. - Click the cluster name and select the
User authentication tab. - Click Edit rules.
- Click
for the required rule and move it up or down. - Click Save.
Deleting a rule
- Go to the folder page
and select Managed Service for Greenplum. - Click the cluster name and select the
User authentication tab. - Click Edit rules.
- Click
for the required rule and select Delete. - Click Save.
Greenplum® and Greenplum Database® are registered trademarks or trademarks of VMware, Inc. in the United States and/or other countries.