Table of Contents

  1. About the Security Guide
  2. Introduction to Informatica Security
  3. User Authentication
  4. LDAP Security Domains
  5. Kerberos Authentication
  6. Domain Security
  7. SAML Authentication for Informatica Web Applications
  8. Security Management in Informatica Administrator
  9. Users and Groups
  10. Privileges and Roles
  11. Permissions
  12. Audit Reports
  13. Command Line Privileges and Permissions
  14. Custom Roles
  15. Default List of Cipher Suites

Security Guide

Security Guide

Step 3. Import the Certificate into the Truststore Used for SAML Authentication

Step 3. Import the Certificate into the Truststore Used for SAML Authentication

Import the assertion signing certificate into the truststore file used for SAML authentication on every gateway node within the Informatica domain.
You can import the certificate into the default Informatica truststore file, or into a custom truststore file.
The file name of the default Informatica truststore file is infa_truststore.jks. The file is installed in the following location on each node:
<Informatica installation directory>\services\shared\security\infa_truststore.jks
Do not replace the default infa_truststore.jks file with a custom truststore file.
If you import the certificate into a custom truststore file, you must save the truststore file in a different directory than the directory containing the default Informatica truststore file. The truststore file name must be infa_truststore.jks.
Use the Java keytool key and certificate management utility to import the certificate into the truststore file on each gateway node.
  1. Copy the certificate files to a local folder on a gateway node within the Informatica domain.
  2. From the command line, go to the location of the keytool utility on the node:
    <Informatica installation directory>\java\jre\bin
  3. From the command line, run the following command:
    keytool -importcert -alias <certificate alias name> -file <certificate path>\<certificate filename> -keystore <path to infa_truststore.jks> -storepass <keystore password>
    Include the password for the truststore file.
  4. Restart the node.

Updated July 24, 2019


Explore Informatica Network