Table of Contents

Search

  1. About the Security Guide
  2. Introduction to Informatica Security
  3. User Authentication
  4. LDAP Authentication
  5. Kerberos Authentication
  6. SAML Authentication for Informatica Web Applications
  7. Domain Security
  8. Security Management in Informatica Administrator
  9. Users and Groups
  10. Privileges and Roles
  11. Permissions
  12. Audit Reports
  13. Appendix A: Command Line Privileges and Permissions
  14. Appendix B: Custom Roles

Secure Model Repository Database

Secure Model Repository Database

When you create a Model Repository Service, you can create the associated Model repository in a database secured with the SSL protocol.
The Model Repository Service connects to the Model repository database through JDBC drivers.
  1. Set up a database secured with the SSL protocol.
  2. In the Administrator tool, create a Model Repository Service.
  3. In the
    New Model Repository Service
    dialog box, enter the general properties for the Model Repository Service and click
    Next
    .
  4. Enter the database properties and the JDBC connection string for the Model Repository Service.
    To connect to a secure database, enter the secure database parameters in the
    Secure JDBC Parameters
    field. Informatica treats the value of
    Secure JDBC Parameters
    field as sensitive data and stores the parameter string encrypted.
    The following list describes the secure database parameters:
    EncryptionMethod
    Required. Indicates whether data is encrypted when transmitted over the network. This parameter must be set to
    SSL
    .
    ValidateServerCertificate
    Optional. Indicates whether Informatica validates the certificate that the database server sends.
    If this parameter is set to True, Informatica validates the certificate that the database server sends. If you specify the HostNameInCertificate parameter, Informatica also validates the host name in the certificate.
    If this parameter is set to False, Informatica does not validate the certificate that the database server sends. Informatica ignores any truststore information that you specify.
    Default is True.
    HostNameInCertificate
    Optional. Host name of the machine that hosts the secure database. If you specify a host name, Informatica validates the host name included in the connection string against the host name in the SSL certificate.
    cryptoProtocolVersion
    Required. Specifies the cryptographic protocol to use to connect to a secure database. You can set the parameter to
    cryptoProtocolVersion=TLSv1.1
    or
    cryptoProtocolVersion=TLSv1.2
    based on the cryptographic protocol used by the database server.
    TrustStore
    Required. Path and file name of the truststore file that contains the SSL certificate for the database.
    If you do not include the path for the truststore file, Informatica looks for the file in the following default directory:
    <InformaticaInstallationDirectory>/tomcat/bin
    TrustStorePassword
    Required. Password for the truststore file for the secure database.
    Informatica appends the secure JDBC parameters to the JDBC connection string. If you include the secure JDBC parameters directly to the connection string, do not enter any parameter in the
    Secure JDBC Parameters
    field.
  5. Test the connection to verify that the connection to the secure repository database is valid.
  6. Complete the process to create a Model Repository Service.

0 COMMENTS

We’d like to hear from you!