Table of Contents


  1. About the Security Guide
  2. Introduction to Informatica Security
  3. User Authentication
  4. LDAP Authentication
  5. Kerberos Authentication
  6. SAML Authentication for Informatica Web Applications
  7. Domain Security
  8. Security Management in Informatica Administrator
  9. Users and Groups
  10. Privileges and Roles
  11. Permissions
  12. Audit Reports
  13. Command Line Privileges and Permissions
  14. Custom Roles
  15. Default List of Cipher Suites

Run-time Objects Privilege Group

Run-time Objects Privilege Group

Privileges in the Run-time Objects privilege group, PowerCenter repository object permissions, and domain object permissions determine actions users can perform on the following run-time objects:
  • Session configuration objects
  • Tasks
  • Workflows
  • Worklets
Some run-time object tasks are determined by the Administrator role, not by privileges or permissions. A user assigned the Administrator role for the PowerCenter Repository Service can delete a PowerCenter Integration Service from the Navigator of the Workflow Manager.
Users assigned permissions but no privileges can perform some actions for run-time objects. The following table lists the actions that users can perform when they are assigned permissions only:
Read on folder
User is able to perform the following actions:
  • Compare run-time objects.
  • Export run-time objects.
  • Receive PowerCenter repository notification messages.
  • Search for run-time objects.
  • Use mapping parameters and variables in a session.
  • View run-time objects, run-time object dependencies, and run-time object history.
Read and Execute on folder
Stop and abort tasks and workflows started by their own user account.
When the PowerCenter Integration Service runs in safe mode, users must have the Administrator role for the associated PowerCenter Repository Service.
To perform actions on run-time objects, users must also have the appropriate privilege in the Tools privilege group.

Updated June 26, 2020