Register Repository Users
Notice
Prerequisites:
Database credentials for the user are stored in AWS Secrets Manager
Registering a repository user enables ALTR’s sidecar to access database credentials, which are used when data consumers access repositories using single sign-on.
To register repository users:
Log into ALTR via Okta.
From the Data Source Details page, click the Users tab.
Click Register Repository User.
Enter the Secret ARN from AWS Secrets Manager in Amazon Resource Name (ARN). This is the secret that stores the plain text password to the database user.
Enter the username from AWS Secrets Manager in Username. This is the username for the relevant database credential.
Click Register User.
Warning
Installed sidecars must have IAM access to the AWS secrets. Contact ALTR Support if you need assistance configuring IAM access.
Edit a repository user to update the Amazon Resource Name (ARN).
To edit a repository user:
Log into ALTR via Okta.
Select → in the Navigation menu.
Click the Repositories tab.
Click the repository to view details.
Click the Users tab.
Locate the repository user and click Edit.
Update the Amazon Resource Name (ARN).
Click Save.
Removing a repository user prevents it from being used in impersonation policies. Update relevant policies to exclude a repository user before removing the user.
To remove a repository user from ALTR:
Log into ALTR via Okta.
Select → in the Navigation menu.
Click the Repositories tab.
Click the repository to view details.
Click the Users tab.
Locate the repository user and click Remove; a modal displays to confirm.
Click Remove User.