Communities
A collaborative platform to connect and grow with like-minded Informaticans across the globe
Product Communities
Connect and collaborate with Informatica experts and champions
Discussions
Have a question? Start a Discussion and get immediate answers you are looking for
User Groups
Customer-organized groups that meet online and in-person. Join today to network, share ideas, and get tips on how to get the most out of Informatica
Get Started
Community Guidelines
Knowledge Center
Troubleshooting documents, product guides, how to videos, best practices, and more
Knowledge Base
One-stop self-service portal for solutions, FAQs, Whitepapers, How Tos, Videos, and more
Support TV
Video channel for step-by-step instructions to use our products, best practices, troubleshooting tips, and much more
Documentation
Information library of the latest product documents
Velocity (Best Practices)
Best practices and use cases from the Implementation team
Learn
Rich resources to help you leverage full capabilities of our products
Trainings
Role-based training programs for the best ROI
Certifications
Get certified on Informatica products. Free, Foundation, or Professional
Product Learning Paths
Free and unlimited modules based on your expertise level and journey
Resources
Library of content to help you leverage the best of Informatica products
Tech Tuesdays Webinars
Most popular webinars on product architecture, best practices, and more
Product Availability Matrix
Product Availability Matrix statements of Informatica products
SupportFlash
Monthly support newsletter
Support Documents
Informatica Support Guide and Statements, Quick Start Guides, and Cloud Product Description Schedule
Product Lifecycle
End of Life statements of Informatica products
Ideas
Events
Change Request Tracking
Marketplace
English
  • Informatica Data Quality 10.4.1
  • All Products

Table of Contents

Search

  1. About the Security Guide
  2. Introduction to Informatica Security
  3. User Authentication
  4. LDAP Authentication
  5. Kerberos Authentication
  6. SAML Authentication for Informatica Web Applications
  7. Domain Security
  8. Security Management in Informatica Administrator
  9. Users and Groups
  10. Privileges and Roles
  11. Permissions
  12. Audit Reports
  13. Appendix A: Command Line Privileges and Permissions
  14. Appendix B: Custom Roles

Security Guide

Security Guide

Back Next

Creating an Operating System Profile

Creating an Operating System Profile

Create an operating system profile and assign it to users and groups to increase security and to isolate the run-time user environment. You can create one or more operating system profiles. The PowerCenter Integration Service uses the operating system profile to run workflows. The Data Integration Service uses the operating system profile to run mappings, profiles, and workflows. The Metadata Access Service uses the operating system profile to access Hadoop connection information to import and preview metadata.
  1. In the Administrator tool, click the
    Security
     tab.
  2. On the Security Actions menu, click
    Create Operating System Profile
    .
    The
    Create Operating System Profile - Step 1 of 3
     dialog box appears.
  3. Enter the following general properties for the operating system profile:
    Property
    Description
    Name
    Name of the operating system profile. The name is not case sensitive and must be unique within the domain. It cannot exceed 128 characters or begin with @. It also cannot contain the following special characters:
    % * + \ / ? ; < >
    The name can contain an ASCII space character except for the first and last character. All other space characters are not allowed.
    System User Name
    Name of an operating system user that exists on the machines where the Integration Service runs. The Integration Service runs workflows or jobs using the system access of the system user defined for the operating system profile.
    When you create operating system profiles, you cannot specify the system user name as root or use a non-root user with uid==0.
  4. Click
    Next
    .
    The
    Configure Operating System Profile - Step 2 of 3
     dialog box appears.
  5. Select the service that will use the operating system profile.
    • PowerCenter Integration Service
    • Data Integration Service
    • Metadata Access Service
  6. Configure the operating system profile properties for the selected services. To create an operating system profile for the Metadata Access Service, you must also select Data Integration Service along with Metadata Access Service and specify the $DISRootDir variable for the Data Integration Service.
  7. If the services access a Hadoop environment at design time or at run time, configure the Hadoop impersonation properties as follows:
    1. Select
      Enable Hadoop Impersonation Properties
      .
    2. Choose to use the logged in user or specify a Hadoop impersonation user to run Hadoop jobs.
  8. Optionally, configure the environment variables.
  9. If the Analyst Service connects to a Data Integration Service that uses operating system profiles, configure the Analyst Service properties.
  10. Click
    Next
    .
    The
    Assign Groups and Users to Operating System Profile - Step 3 of 3
     dialog box appears.
  11. In the
    Groups
     tab, assign groups to the operating system profile as follows:
    1. To assign specific groups to the operating system profile, select one or more groups and click
      Add
      .
    2. To assign all available groups to the operating system profile, click
      Add All
      .
  12. Optionally, assign the operating system profile as the default profile to one or more groups. To assign a default profile, select
    Default Profile
     for the group in the Selected Group(s) list.
  13. In the
    Users
     tab, assign users to the operating system profile as follows:
    1. To assign specific users to the operating system profile, select one or more users and click
      Add
      .
    2. To assign all available users to the operating system profile, click
      Add All
      .
  14. Optionally, assign the operating system profile as the default profile to one or more users. To assign a default profile, select
    Default Profile
     for the user in the Selected User(s) list.
  15. Click
    Finish
    .
    After you create the operating system profile, the details panel displays the properties of the operating system profile and the groups and users that the profile is assigned to.
0 COMMENTS
We’d like to hear from you!