Nonstop Database, HiRDB Version 9 System Operation Guide
![[Contents]](FIGURE/CONTENT.GIF)
![[Index]](FIGURE/INDEX.GIF)
![[Back]](FIGURE/FRONT.GIF)
![[Next]](FIGURE/AFTER.GIF)
2.5.5 Notes about using the facility for simple authentication of OS login users
- Limitations on authorization identifiers (permitted characters and maximum number of characters) apply also to the user names permitted for simple authenticated users.
- When you use the facility for simple authentication of OS login users, we recommend that you use a firewall to prevent access from unauthorized machines.
- If you use as clients UAPs under OLTP, such as OpenTP1, we recommend that you not use the facility for simple authentication of OS login users because UAP processes will be run under OLTP.
- The facility for simple authentication of OS login users can be used only for user authentication when a connection is established with the server. This facility cannot be used for any other purposes.
- The facility cannot be used for specifying authorization identifiers.
When the single-byte hyphen (-) simple authentication keyword is specified as an authorization identifier for the purpose of specifying, for example, a table owner in an SQL statement, an SQL statement executor, or the target of an operation, the simple authentication keyword will not be replaced with the OS user name for the authorization identifier.
- The facility cannot be used for switching users (SET SESSION AUTHORIZATION SQL statement).
When the simple authentication keyword is specified in an SQL statement for switching the user, an attempt to establish a connection to the HiRDB server will fail (the KFPA11564-E message is output).
- The facility for simple authentication of OS login users cannot be used when you use a Type4 JDBC driver.
- If the facility for simple authentication of OS login users is being used when a connection cannot be established to the LDAP server from the HiRDB client or when the LDAP server's host name resolution has failed, it might take a considerable amount of time to establish the connection with the HiRDB server.
- For notes about commands and utilities, see Limitations when using the facility for simple authentication of OS login users in the manual HiRDB Version 9 Command Reference.
All Rights Reserved. Copyright (C) 2011, 2015, Hitachi, Ltd.