Table of Contents

Search

  1. Preface
  2. Introduction to PowerExchange
  3. DBMOVER Configuration File
  4. Netport Jobs
  5. PowerExchange Message Logs and Destination Overrides
  6. SMF Statistics Logging and Reporting
  7. PowerExchange Security
  8. Secure Sockets Layer Support
  9. PowerExchange Alternative Network Security
  10. PowerExchange Nonrelational SQL
  11. PowerExchange Globalization
  12. Using the PowerExchange ODBC Drivers
  13. PowerExchange Datatypes and Conversion Matrix
  14. Appendix A: DTL__CAPXTIMESTAMP Time Stamps
  15. Appendix B: PowerExchange Glossary

PowerExchange LDAP Authentication Components

PowerExchange LDAP Authentication Components

LDAP authentication in PowerExchange involves PowerExchange and LDAP components.
The following image shows the main components that are involved in LDAP user authentication in PowerExchange:
PowerExchange components include the PowerExchange user, the PowerExchange Listener, and configuration files. Oracle components include the LDAP client libraries and the LDAP server.
PowerExchange Listener or Logger
The PowerExchange Listener or the PowerExchange Logger for Linux, UNIX, and Windows receives the credentials of the PowerExchange user from the client program and issues the following calls to the LDAP server:
  1. Bind the search user. The PowerExchange Listener or PowerExchange Logger uses the search user to connect to the LDAP server.
  2. Search for the PowerExchange user.
  3. Bind the PowerExchange user.
The following PowerExchange Listener clients can use LDAP authentication:
  • PowerCenter workflow or mapping with a PowerExchange source or target
  • PowerExchange Navigator
  • pwxcmd commands that connect to the PowerExchange Listener through the SVCNODE port
The following PowerExchange Logger clients can use LDAP authentication:
  • pwxcmd commands that connect to the PowerExchange Logger through the SVCNODE port
PowerExchange user credentials
A client program sends the user ID and password of the PowerExchange user to the PowerExchange Listener or PowerExchange Logger.
Configuration files
The PowerExchange Listener or PowerExchange Logger reads LDAP configuration information from the DBMOVER configuration file.
If you configure PowerExchange to use the Transport Layer Security (TLS) protocol to encrypt communications between PowerExchange and the LDAP server, PowerExchange uses keystore and truststore files to authenticate the LDAP client or server.
LDAP client libraries
The LDAP client libraries provide an interface between the PowerExchange Listener or Logger and the LDAP server.
LDAP server
The LDAP server receives and executes the calls that the PowerExchange Listener or PowerExchange Logger issues to bind the search user, search for the PowerExchange user, and bind the PowerExchange user.