Communities
A collaborative platform to connect and grow with like-minded Informaticans across the globe
Product Communities
Connect and collaborate with Informatica experts and champions
Discussions
Have a question? Start a Discussion and get immediate answers you are looking for
User Groups
Customer-organized groups that meet online and in-person. Join today to network, share ideas, and get tips on how to get the most out of Informatica
Get Started
Community Guidelines
Knowledge Center
Troubleshooting documents, product guides, how to videos, best practices, and more
Knowledge Base
One-stop self-service portal for solutions, FAQs, Whitepapers, How Tos, Videos, and more
Support TV
Video channel for step-by-step instructions to use our products, best practices, troubleshooting tips, and much more
Documentation
Information library of the latest product documents
Velocity (Best Practices)
Best practices and use cases from the Implementation team
Learn
Rich resources to help you leverage full capabilities of our products
Trainings
Role-based training programs for the best ROI
Certifications
Get certified on Informatica products. Free, Foundation, or Professional
Product Learning Paths
Free and unlimited modules based on your expertise level and journey
Resources
Library of content to help you leverage the best of Informatica products
Tech Tuesdays Webinars
Most popular webinars on product architecture, best practices, and more
Product Availability Matrix
Product Availability Matrix statements of Informatica products
SupportFlash
Monthly support newsletter
Support Documents
Informatica Support Guide and Statements, Quick Start Guides, and Cloud Product Description Schedule
Product Lifecycle
End of Life statements of Informatica products
Ideas
Events
Change Request Tracking
Marketplace
English
  • Dynamic Data Masking 9.9.3
  • All Products

Table of Contents

Search

  1. Preface
  2. Introduction to the Active Directory Accelerator
  3. Active Directory Accelerator Setup
  4. Active Directory Accelerator Rules
  5. Debug the Active Directory Accelerator

Active Directory Accelerator Guide

Active Directory Accelerator Guide

Back Next

Active Directory Accelerator Rules Overview

Active Directory Accelerator Rules Overview

The Active Directory accelerator contains the LDAP Rule Set security rule set. The rule set contains rules and rule folders that you configure to mask data based on the LDAP user, attribute, or group.
If you want to define an LDAP user that receives masked or unmasked data, define the user in the LDAPActualUser rule.
If you want to define LDAP groups that receive masked data or users with LDAP attribute values that you want to receive masked data, enable the BlackList folder and disable the WhiteList folder. Use the BlackListGroups rule to mask data based on LDAP groups. Use the BlackListAttributeName and BlackListAttributeValues rules to mask data based on attribute values.
If you want some LDAP groups to receive unmasked data or you want users with certain LDAP attribute values to receive unmasked data, enable the WhiteList folder and disable the BlackList folder. Use the WhiteListGroups rule to allow users in an LDAP group to view unmasked data. The groups that you define in the WhiteListGroups rule receive unmasked data. The groups that you do not list in the WhiteListGroups rule view masked data. Use the WhiteListAttributeName and WhiteListAttributeValues rules to allow users with certain LDAP attribute values to view unmasked data.
Disable the BlackList or WhiteList rule folder based on how you want to mask data. If you enable the BlackList rule folder and the WhiteList rule folder, the SQL request goes to the first folder in the tree.
0 COMMENTS
We’d like to hear from you!