Table of Contents

  1. About the Security Guide
  2. Introduction to Informatica Security
  3. User Authentication
  4. LDAP Security Domains
  5. Kerberos Authentication
  6. Domain Security
  7. SAML Authentication for Informatica Web Applications
  8. Security Management in Informatica Administrator
  9. Users and Groups
  10. Privileges and Roles
  11. Permissions
  12. Audit Reports
  13. Command Line Privileges and Permissions
  14. Custom Roles
  15. Default List of Cipher Suites

Security Guide

Security Guide

Secure Model Repository Database

Secure Model Repository Database

When you create a Model Repository Service, you can create the associated Model repository in a database secured with the SSL protocol.
The Model Repository Service connects to the Model repository database through JDBC drivers.
  1. Set up a database secured with the SSL protocol.
  2. In the Administrator tool, create a Model Repository Service.
  3. In the New Model Repository Service dialog box, enter the general properties for the Model Repository Service and click Next.
  4. Enter the database properties and the JDBC connection string for the Model Repository Service.
    To connect to a secure database, enter the secure database parameters in the Secure JDBC Parameters field. Informatica treats the value of Secure JDBC Parameters field as sensitive data and stores the parameter string encrypted.
    The following list describes the secure database parameters:
    EncryptionMethod
    Required. Indicates whether data is encrypted when transmitted over the network. This parameter must be set to SSL.
    ValidateServerCertificate
    Optional. Indicates whether Informatica validates the certificate that the database server sends.
    If this parameter is set to True, Informatica validates the certificate that the database server sends. If you specify the HostNameInCertificate parameter, Informatica also validates the host name in the certificate.
    If this parameter is set to False, Informatica does not validate the certificate that the database server sends. Informatica ignores any truststore information that you specify.
    Default is True.
    HostNameInCertificate
    Optional. Host name of the machine that hosts the secure database. If you specify a host name, Informatica validates the host name included in the connection string against the host name in the SSL certificate.
    cryptoProtocolVersion
    Required. Specifies the cryptographic protocol to use to connect to a secure database. You can set the parameter to cryptoProtocolVersion=TLSv1.1 or cryptoProtocolVersion=TLSv1.2 based on the cryptographic protocol used by the database server.
    TrustStore
    Required. Path and file name of the truststore file that contains the SSL certificate for the database.
    If you do not include the path for the truststore file, Informatica looks for the file in the following default directory: <InformaticaInstallationDirectory>/tomcat/bin
    TrustStorePassword
    Required. Password for the truststore file for the secure database.
    Informatica appends the secure JDBC parameters to the JDBC connection string. If you include the secure JDBC parameters directly to the connection string, do not enter any parameter in the Secure JDBC Parameters field.
  5. Test the connection to verify that the connection to the secure repository database is valid.
  6. Complete the process to create a Model Repository Service.

Updated May 17, 2019


Explore Informatica Network