Communities
A collaborative platform to connect and grow with like-minded Informaticans across the globe
Product Communities
Connect and collaborate with Informatica experts and champions
Discussions
Have a question? Start a Discussion and get immediate answers you are looking for
User Groups
Customer-organized groups that meet online and in-person. Join today to network, share ideas, and get tips on how to get the most out of Informatica
Get Started
Community Guidelines
Knowledge Center
Troubleshooting documents, product guides, how to videos, best practices, and more
Knowledge Base
One-stop self-service portal for solutions, FAQs, Whitepapers, How Tos, Videos, and more
Support TV
Video channel for step-by-step instructions to use our products, best practices, troubleshooting tips, and much more
Documentation
Information library of the latest product documents
Velocity (Best Practices)
Best practices and use cases from the Implementation team
Learn
Rich resources to help you leverage full capabilities of our products
Trainings
Role-based training programs for the best ROI
Certifications
Get certified on Informatica products. Free, Foundation, or Professional
Product Learning Paths
Free and unlimited modules based on your expertise level and journey
Resources
Library of content to help you leverage the best of Informatica products
Tech Tuesdays Webinars
Most popular webinars on product architecture, best practices, and more
Product Availability Matrix
Product Availability Matrix statements of Informatica products
SupportFlash
Monthly support newsletter
Support Documents
Informatica Support Guide and Statements, Quick Start Guides, and Cloud Product Description Schedule
Product Lifecycle
End of Life statements of Informatica products
Ideas
Events
Change Request Tracking
Marketplace
English
  • Dynamic Data Masking H2L
  • All Products

Table of Contents

Search

  1. Abstract
  2. Supported Versions
  3. Using the Replace Table Rule Action to Implement Row-Level Security

Using the Replace Table Rule Action to Implement Row-Level Security

Using the Replace Table Rule Action to Implement Row-Level Security

Back Next

Step 5. Create the Replace Table Rule

Step 5. Create the Replace Table Rule

Use the symbol that you defined in Step 4 to create a Replace Table rule that filters out rows from the result set that contain information about employees in other departments.
  1. In the Rule Editor, select the security rule folder that you created and click
    Action
    Append Rule
    .
    The
    Append Rule
     window appears.
  2. Configure the following parameters for the Replace Table rule:
    Rule Name
    Enter the name of the rule. In this example, the rule name is ReplaceTable.
    Description
    Enter an optional description of the rule.
    Matcher
    Select the Any matcher. The Rule Engine applies the rule to all incoming requests.
    Action
    Select the Replace Table action. The Replace Table action replaces the FROM clause of the SQL statement to provide row-level security. In the Tables to Replace box, define the following parameters:
    • Table Name
      . Enter the name of the table. In this example, the table name is
      .*EMPLOYEES.*
      , which identifies the EMPLOYEES table.
    • Alternative Object or Query
      . Enter an alternative query that includes a WHERE clause to replace the original FROM clause in the request. In this example, the alternative query is
      SELECT * FROM \(table) WHERE DEPARTMENT_ID=\(DepartmentID)
      . The alternative query changes the statement so that it returns only rows that have the Sales department identification number in the DEPARTMENT_ID column. The query specifies the Sales department identification number with the DepartmentID symbol.
      You can use the \(table), \(prefix), and \(tableOnly) symbols with the Replace Table action to specify the part of the FROM clause that you want to replace. For more information about the Replace Table action symbols, see the
      Dynamic Data Masking User Guide
      .
    Processing Action
    Select the Continue processing action. The Rule Engine continues to the next rule in the tree.
    Log When Rule is Applied
    To include information in the log files about when the Rule Engine applies the rule, select the Log When Rule is Applied parameter.
    The following image shows the rule parameters:
    The masking rule uses the Any matcher, the Replace Table rule action, and the Continue processing action.
  3. Click
    OK
     to close the window and add the rule to the rule tree.
  4. Click
    File
    Update Rules
     to save the rule.
0 COMMENTS
We’d like to hear from you!