Table of Contents

Search

  1. About the Security Guide
  2. Introduction to Informatica Security
  3. User Authentication
  4. LDAP Authentication
  5. Kerberos Authentication
  6. SAML Authentication for Informatica Web Applications
  7. Domain Security
  8. Security Management in Informatica Administrator
  9. Users and Groups
  10. Privileges and Roles
  11. Permissions
  12. Audit Reports
  13. Command Line Privileges and Permissions
  14. Custom Roles
  15. Default List of Cipher Suites

Security Guide

Security Guide

Administrator Role

Administrator Role

When you assign the Administrator role to a user or group for the domain, Data Integration Service, or PowerCenter Repository Service, the user or group can complete some tasks that are determined by the Administrator role, not by privileges or permissions.
You can assign a user or group all privileges for the domain, Data Integration Service, or PowerCenter Repository Service and then grant the user or group full permissions on all domain or PowerCenter repository objects. However, this user or group cannot complete the tasks determined by the Administrator role.
For example, a user assigned the Administrator role for the domain can configure domain properties in the Administrator tool. A user assigned all domain privileges and permission on the domain cannot configure domain properties.
The following table lists the tasks determined by the Administrator role for the domain, Data Integration Service, Mass Ingestion Service, and PowerCenter Repository Service:
Service
Tasks
Domain
  • Configure domain properties.
  • Configure cluster configurations.
  • Create operating system profiles.
  • Delete operating system profiles.
  • Grant permission on the domain and operating system profiles.
  • Manage and purge log events.
  • Receive domain alerts.
  • Run the License Report.
  • View user activity log events.
  • Shut down the domain.
  • Access the service upgrade wizard.
Data Integration Service
  • Upgrade the Data Integration Service using the Actions menu.
Mass Ingestion Service
  • Browse all mass ingestion specifications.
  • Edit a mass ingestion specification.
  • Run a mass ingestion specification.
  • Delete a mass ingestion specification.
PowerCenter Repository Service
  • Assign operating system profiles to repository folders if the PowerCenter Integration Service uses operating system profiles.*
  • Change the owner of folders and global objects.*
  • Configure folder and global object permissions.*
  • Connect to the PowerCenter Integration Service from the PowerCenter Client when running the PowerCenter Integration Service in safe mode.
  • Delete a PowerCenter Integration Service from the Navigator of the Workflow Manager.
  • Delete folders and global objects.*
  • Designate folders to be shared.*
  • Edit the name and description of folders.*
*The PowerCenter repository folder owner or global object owner can also complete these tasks.

0 COMMENTS

We’d like to hear from you!