Register Repository Users
Notice
Prerequisites:
Database credentials for the user are stored in either AWS Secrets Manager or Azure Key Vault.
Registering a repository user enables ALTR’s sidecar to access database credentials, which are used when data consumers access repositories using single sign-on.
To register repository users:
Log into ALTR via Okta.
From the Data Source Details page, click the Users tab.
Click Register Repository User.
Enter the repository username in Username. This is the username for the relevant database credential.
Select the Secret Source. Options are:
Amazon Secrets Manager
Azure Key Vault
Populate applicable fields. These are copied directly from the secret source.
Click Register User.
Warning
Installed sidecars
using Amazon Secrets Manager must have IAM access to the AWS secrets.
using Azure Key Vault must have identity available to it, can authenticate to the key vault and have access to the secret.
Contact ALTR Support if you need assistance.
Edit a repository user to update the Amazon Resource Name (ARN).
To edit a repository user:
Log into ALTR via Okta.
Select → in the Navigation menu.
Click the Repositories tab.
Click the repository to view details.
Click the Users tab.
Locate the repository user and click Edit.
Update repository user.
Click Save.
Removing a repository user prevents it from being used in impersonation policies. Update relevant policies to exclude a repository user before removing the user.
To remove a repository user from ALTR:
Log into ALTR via Okta.
Select → in the Navigation menu.
Click the Repositories tab.
Click the repository to view details.
Click the Users tab.
Locate the repository user and click Remove; a modal displays to confirm.
Click Remove User.