Domain Security Overview
You can enable options in the Informatica domain to configure secure communication between the components in the domain and between the domain and client components.
You can enable different options to secure specific components in the domain. You do not have to secure all components in the domain. For example, you can secure the communication between the services in the domain but not secure the connection between the Model Repository Service and the repository database.
Informatica uses the TCP/IP and HTTP protocols to communicate between components in the domain. The domain uses SSL certificates to secure communication between components.
When you install the Informatica services, you can enable secure communication for the services in the domain and for the Administrator tool. After installation, you can configure secure communication in the domain in the Administrator tool or from the command line.
During installation, the installer generates an encryption key to encrypt sensitive data, such as passwords, that are stored in the domain. You can provide the keyword that the installer uses to generate the encryption key. After installation, you can change the encryption key for sensitive data. You must upgrade the content of repositories to update the encrypted data.
You can enable secure communication in the following areas:
- Within the domain, you can select options to enable secure communication for the following components:
- Between the Service Manager, the services in the domain, and the Informatica client tools
- Between the domain and the domain configuration repository
- Between the repository services and repository databases
- Between the PowerCenter Integration Service and DTM processes
- Web application services
- You can secure the connection between a web application service, such as the Analyst Service, and the browser
- Sources and targets
- You can enable secure communication between the Data Integration Service and PowerCenter Integration Service and the source and target databases.
- Data storage
- Informatica encrypts sensitive data, such as passwords, when it stores data in the domain. Informatica generates an encryption key based on a keyword that you provide during installation. Informatica uses the encryption key to encrypt and decrypt sensitive data that are stored in the domain.