Table of Contents


  1. About the Security Guide
  2. Introduction to Informatica Security
  3. User Authentication
  4. LDAP Security Domains
  5. Kerberos Authentication Setup
  6. Domain Security
  7. Security Management in Informatica Administrator
  8. Users and Groups
  9. Privileges and Roles
  10. Permissions
  11. Audit Reports
  12. Command Line Privileges and Permissions
  13. Custom Roles

Domain Security Overview

Domain Security Overview

You can enable options in the Informatica domain to configure secure communication between the components in the domain and between the domain and client components.
You can enable different options to secure specific components in the domain. You do not have to secure all components in the domain. For example, you can secure the communication between the services in the domain but not secure the connection between the Model Repository Service and the repository database.
Informatica uses the TCP/IP and HTTP protocols to communicate between components in the domain. The domain uses SSL certificates to secure communication between components.
When you install the Informatica services, you can enable secure communication for the services in the domain and for the Administrator tool. After installation, you can configure secure communication in the domain in the Administrator tool or from the command line.
During installation, the installer generates an encryption key to encrypt sensitive data, such as passwords, that are stored in the domain. You can provide the keyword that the installer uses to generate the encryption key. After installation, you can change the encryption key for sensitive data. You must upgrade the content of repositories to update the encrypted data.
You can enable secure communication in the following areas:
Within the domain, you can select options to enable secure communication for the following components:
  • Between the Service Manager, the services in the domain, and the Informatica client tools
  • Between the domain and the domain configuration repository
  • Between the repository services and repository databases
  • Between the PowerCenter Integration Service and DTM processes
Web application services
You can secure the connection between a web application service, such as the Analyst Service, and the browser
Sources and targets
You can enable secure communication between the Data Integration Service and PowerCenter Integration Service and the source and target databases.
Data storage
Informatica encrypts sensitive data, such as passwords, when it stores data in the domain. Informatica generates an encryption key based on a keyword that you provide during installation. Informatica uses the encryption key to encrypt and decrypt sensitive data that are stored in the domain.

Updated April 29, 2019