Table of Contents

Search

  1. About the Security Guide
  2. Introduction to Informatica Security
  3. User Authentication
  4. LDAP Security Domains
  5. Kerberos Authentication Setup
  6. Domain Security
  7. Security Management in Informatica Administrator
  8. Users and Groups
  9. Privileges and Roles
  10. Permissions
  11. Audit Reports
  12. Command Line Privileges and Permissions
  13. Custom Roles

Create the User Migration File

Create the User Migration File

The infacmd isp migrateUsers command uses a user migration file to determine what groups, roles, privileges, and permissions to assign LDAP users. The user migration file is a plain text file that contains the list of native users and the corresponding LDAP users that require the same groups, roles, privileges, and permissions.
When you create the user migration file, you must specify the security domain for the user account. A forward slash (/) separates the security domain from the user name. A comma (,) separates the native user from the corresponding LDAP user. Security domains are case sensitive. User names are not case sensitive.
Use the following format to list entries in the user migration file:
Native/<SourceUserName>,LDAP/<TargetUserName>
You can migrate the groups, roles, privileges, and permissions of native users to users in different LDAP security domains. For example, the user migration file contains the following list of users:
Native/User1,LDAPSecurityDomain/User1 Native/User2,LDAPSecurityDomain/User2 Native/User3,newLDAPSecDomain/User3
The migrateUser command assigns User1 and User2 in LDAPSecurityDomain the same groups, roles, privileges, and permissions as User1 and User2 in the native security domain. The command assigns User3 in newLDAPSecDomain the same groups, roles, privileges, and permissions as User3 in the native security domain.
The migrateUsers command skips any entry with a duplicate source user name or target user name.


Updated April 29, 2019