Table of Contents

Search

  1. Preface
  2. Analyst Service
  3. Content Management Service
  4. Data Integration Service
  5. Data Integration Service Architecture
  6. Data Integration Service Management
  7. Data Integration Service Grid
  8. Data Integration Service Applications
  9. Metadata Manager Service
  10. Model Repository Service
  11. PowerCenter Integration Service
  12. PowerCenter Integration Service Architecture
  13. High Availability for the PowerCenter Integration Service
  14. PowerCenter Repository Service
  15. PowerCenter Repository Management
  16. PowerExchange Listener Service
  17. PowerExchange Logger Service
  18. SAP BW Service
  19. Search Service
  20. System Services
  21. Test Data Manager Service
  22. Web Services Hub
  23. Application Service Upgrade
  24. Application Service Databases
  25. Connecting to Databases from Windows
  26. Connecting to Databases from UNIX
  27. Updating the DynamicSections Parameter of a DB2 Database

Configuring System Permissions for the Operating System Profile Users

Configuring System Permissions for the Operating System Profile Users

Configure system permissions on the files and directories that operating system profile users must access at run time.
  1. Make sure that the operating system user that starts the Informatica services has sudo permission.
  2. On UNIX or Linux, verify that setuid is enabled on the file system that contains the Informatica installation.
    If necessary, remount the file system with setuid enabled.
  3. Make sure that all the library files in the following directory have at least 755 permissions:
    <Informatica installation directory>/services/shared/bin
  4. Make sure that the operating system profile users have at least 770 permissions on the $DISTempDir directory and 750 permissions on the $DISLogDir directory.
  5. Make sure that the operating system profile users have at least 755 permissions to the directory where the pmsuid file is located and all its parent directories.
    The pmsuid file is located in the following directory:
    <Informatica installation directory>/services/shared/bin
  6. Set the owner and group of
    pmsuid
    to administrator user and enable the setuid bit for
    pmsuid
    . Perform the following steps on each node where the Data Integration Service runs:
    1. At the command prompt, switch to the following directory:
      <Informatica installation directory>/services/shared/bin
    2. Enter the following information at the command line to log in as the administrator user:
      su <administrator user name>
      For example, if the administrator user name is root enter the following command:
      su root
    3. Enter the following commands to set the owner and group to the administrator user:
      sudo chown <administrator user name> pmsuid sudo chgrp <administrator user name> pmsuid
    4. Enter the following command to set the setuid bit:
      sudo chmod +s pmsuid
    5. Verify that the permissions for the pmsuid file appears as follows:
      -rwsr-sr-x
  7. Set the umask value of the directories that the operating system profile accesses to 0027 or 0077 for better security.
    When you create these directories on UNIX or Linux, the default umask value is set to 0222.