Internal authentication

Internal authentication is based on Cassandra-controlled login accounts and passwords.

Like object permission management using internal authorization, internal authentication is based on Cassandra-controlled login accounts and passwords. Internal authentication works for the following clients when you provide a user name and password to start up the client:

Astyanax
cassandra-cli
cqlsh
DataStax Java and C# drivers
Hector
pycassa

Internal authentication stores usernames and bcrypt-hashed passwords in the system_auth.credentials table.

PasswordAuthenticator is an IAuthorizer implementation, available in Cassandra 1.2.2 and later, that you can use to configure Cassandra for internal authentication out-of-the-box.

Limitations

The dsetool and Hadoop utilities are not supported by internal authentication.

DataStax, Titan, and TitanDB are registered trademark of DataStax, Inc. and its subsidiaries in the United States and/or other countries.

Apache Cassandra, Apache, Tomcat, Lucene, Solr, Hadoop, Spark, TinkerPop, and Cassandra are trademarks of the Apache Software Foundation or its subsidiaries in Canada, the United States and/or other countries.