TDS Proxy Installation


The TDS Proxy is a database proxy that communicates on TDS protocol, which is the protocol leveraged by SQL Server. This proxy sits between your application and database - intercepting queries and commands and taking action based on your governance and security policies. ALTR's proxy is able to observe queries, control data access, and perform query and result set edits for tokenization support.

Similar to ALTR's Smart Drivers, ALTR's proxy solution supports three modes: Observe, Govern, and Protect.


TDS Proxy is able to identify every query made to a database including which columns and how many rows are returned in result sets. This enables customers to have full visibility into queries made against their database, including which users or applications performed those queries, what data was accessed, and how many values were accessed.


TDS Proxy is able to communicate with the ALTR platform to take governance action based on data access, enabling customers to control which users and applications can access what data.


The Proxy supports tokenization and detokenization of data for your databases, securing the data from malicious use and supporting PCI compliance standards. The Proxy is able to tokenize existing data, edit queries made on the fly to support operations on tokenized data, and detokenize query result sets.

TDS Proxy Installation


ALTR Customer Care will create an organization for your ALTR account.
ALTR Customer Care will provide a Docker image of the TDS Proxy.


Load the provided Docker image.

Copy Snippet

List the loaded Docker image. Make a record of the TAG name, this will be used to execute the container, in the following example it is master-xxxxxxxx

Copy Snippet

Running the ALTR TDS Proxy

Configuration Parameters

All configuration parameters which do not have a default value are required.

This is the hostname for the ALTR services data gateway. You can get this value from your customer care representative.

This is the port for the ALTR services data gateway. You can get this value from your customer care representative.

This value should be set to SOCKET_IO

MACHINE_ID(Type: String)
Contact ALTR Customer care to retrieve this parameter value.

SELF_HOST_NAME(Type:String, Default: localhost)
The external name the TDS-Gateway would resolve to.

The hostname of your SQL Server Database.

SQL_SERVER_PORT(Type: Number(Min: 0, Max: 65536), Default: 1433)
The port of your SQL Server Database.

LOG_LEVEL(Type: Number(Min: 2, Max: 9, Inclusive), Default: 6)
The log severity level to print to console. The higher the number the more visibility into the application. We recommend using the default value of 6.

First section of content
Copy Code Snippet