You can enter a valid PowerExchange passphrase instead of password to access sources and targets on z/OS and i5/OS. Passphrases provide enhanced security because they are longer and can contain a wide range of allowable character types. You can also use encrypted passphrases.
You can enter a passphrase or encrypted passphrase in PowerCenter and the PowerExchange Navigator.
In PowerCenter, enter a passphrase when performing any of the following tasks:
Defining PWXPC DB2zOS, DB2iOS, and NRDB connections for bulk data movement and CDC
Defining PowerExchange ODBC connections
Importing source and target definitions, importing extraction maps, and previewing data with PWXPC
Importing source and target definitions with PowerExchange ODBC
For more information, see
PowerExchange Interfaces for PowerCenter
.
In the PowerExchange Navigator, enter a passphrase when performing any of the following tasks:
Adding or viewing registration groups, extraction groups, and application groups
Adding personal metadata profiles
Sending data maps to a remote node, or importing remote data maps
Defining logons for accessing remote data maps and data
Importing copybooks or i5/OS DDSs from remote locations
Viewing a remote data file
Performing a database row test
Generating an encrypted passphrase
For more information, see the
PowerExchange Navigator User Guide
.
You can also enter PowerExchange passphrases when defining connections to data sources on z/OS or i5/OS in the Informatica Developer tool. For more information, see the
Informatica Developer Tool Guide
.
Passphrases are supported for netport and DB2 Loader jobs. You must modify the JCL templates to adhere to the following rule:
The PASSWORD=%PWD specification must start at column 4 and it must be on a JCL line by itself within the JOB statement at the beginning of the template JCL.
An i5/OS passphrase can be from 9 to 31 characters in length.
A z/OS passphrase can be from 9 to 128 characters in length for PWXPC connections or from 9 to 79 characters in length for ODBC connections.
On z/OS, a valid RACF passphrase can be up to 100 characters in length. PowerExchange truncates passphrases longer than 100 characters when passing them to RACF for validation. IMS netport passphrases cannot exceed 60 characters in length.
A z/OS passphrase used in netport and DB2 Loader jobs is limited by the 80 byte JCL limit so cannot exceed 68 characters
Passphrases can contain the following characters:
Uppercase and lowercase letters
The numbers 0 to 9
Spaces
The following special characters:
’ - ; # \ , . / ! % & * ( ) _ + { } : @ | < > ?
The first character is an apostrophe. IMS netport passphrases cannot specify an apostrophe.
Passphrases cannot contain single quotation marks (‘), double quotation marks (“), or currency symbols.
Do not enclose passphrases in quotation marks.
Passphrase Usage Considerations
The following usage considerations apply to passphrases:
All PowerExchange instances in your environment must use PowerExchange version 9.6.0 or later.
On z/OS, passphrases are not supported for netport jobs. Passphrases also are not supported for JCL template jobs such as DB2LDJCL and IDMSMJCL in the RUNLIB library that are submitted by the Listener in response to a PowerCenter or PowerExchange Navigator client request for connection to a source or target.
The PowerExchange Listener must run with a security setting of SECURITY=(1,N) or higher in the DBMOVER member.
To use passphrases for IMS connections, ensure that the following requirements are met:
You must configure ODBA access to IMS as described in the
PowerExchange Navigator User Guide
.
You must use IMS data maps that specify IMS ODBA as the access method. Do not use data maps that specify the DL/1 BATCH access method because this access method requires the use of netport jobs, which do not support passphrases.
The IMS database must be online in the IMS control region to use ODBA access to IMS.