[ https://issues.jboss.org/browse/TEIIDDES-2027?page=com.atlassian.jira.plu... ] Ramesh Reddy commented on TEIIDDES-2027: ---------------------------------------- 1) A data role defines the permission inside it, so that is where it makes the connection with model and schema object 2) It should be allowed on all data-roles, however I do not see code how Teiid is making use of this, as there were further changes on this subject in TEIID-2863 This JIRA adds following VDB properties {code} <property name="security-domain" value="teiid-spengo" /> <property name="gss-pattern" value="{regex}" /> <property name="password-pattern" value="{regex}" /> <property name="authentication-type" value="GSS or USERPASSWORD" /> {code} The full document at https://docs.jboss.org/author/display/TEIID/Kerberos+support+through+GSSAPI -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira