Hi, I'm Ask INFA!
What would you like to know?
ASK INFAPreview
Please to access Ask INFA.
Communities
A collaborative platform to connect and grow with like-minded Informaticans across the globe
Product Communities
Connect and collaborate with Informatica experts and champions
Discussions
Have a question? Start a Discussion and get immediate answers you are looking for
User Groups
Customer-organized groups that meet online and in-person. Join today to network, share ideas, and get tips on how to get the most out of Informatica
Get Started
Community Guidelines
Knowledge Center
Troubleshooting documents, product guides, how to videos, best practices, and more
Knowledge Base
One-stop self-service portal for solutions, FAQs, Whitepapers, How Tos, Videos, and more
Support TV
Video channel for step-by-step instructions to use our products, best practices, troubleshooting tips, and much more
Documentation
Information library of the latest product documents
Velocity (Best Practices)
Best practices and use cases from the Implementation team
Learn
Rich resources to help you leverage full capabilities of our products
Trainings
Role-based training programs for the best ROI
Certifications
Get certified on Informatica products. Free, Foundation, or Professional
Product Learning Paths
Free and unlimited modules based on your expertise level and journey
Resources
Library of content to help you leverage the best of Informatica products
Tech Tuesdays Webinars
Most popular webinars on product architecture, best practices, and more
Product Availability Matrix
Product Availability Matrix statements of Informatica products
SupportFlash
Monthly support newsletter
Support Documents
Informatica Support Guide and Statements, Quick Start Guides, and Cloud Product Description Schedule
Product Lifecycle
End of Life statements of Informatica products
Ideas
Events
Change Request Tracking
Marketplace
English
  • Cloud Data Integration for PowerCenter
  • All Products

Table of Contents

Search

  1. Preface
  2. Introduction to Informatica Security
  3. User Authentication
  4. LDAP Authentication
  5. Kerberos authentication
  6. SAML Authentication for Informatica Web Applications
  7. Domain Security
  8. Security Management in Informatica Administrator
  9. Users and Groups
  10. Privileges and Roles
  11. Permissions
  12. Audit Reports
  13. Appendix A: Command Line Privileges and Permissions
  14. Appendix B: Custom Roles

Security Guide

Security Guide

Back Next

Enable Kerberos Authentication for CDI-PC Client

Enable Kerberos Authentication for
CDI-PC Client

Copy the Kerberos configuration file to each computer that hosts an Informatica client, and then set an environment variable to point to the configuration file. You must also enable client browsers to access the
CDI-PC
 web applications.
After you configure the Informatica domain to run with Kerberos authentication, perform the following tasks on the
CDI-PC Client
 tools:
Copy the Kerberos configuration file to each
CDI-PC Client
 host.
Copy the
krb5.conf
 file to each computer that hosts a Informatica client such as the
CDI-PC Client
 or Informatica Developer (the Developer tool). Copy the file to the following directory on each host:
<
CDI-PC
 installation directory>\clients\shared\security
Set the KRB5_CONFIG environment variable on each
CDI-PC Client
 host.
Set the KRB5_CONFIG environment variable to the path and file name of the Kerberos configuration file on each computer that hosts Informatica clients such as the
CDI-PC Client
 and the Developer tool.
Configure web browsers to access
CDI-PC
 web applications.
In Microsoft Internet Explorer and Google Chrome, add the URL of the Informatica web applications, such as the Analyst tool, to the list of trusted sites.
If you are using Chrome version 41 or later, you must also set the
AuthServerWhitelist
 and
AuthNegotiateDelegateWhitelist
 policies.
Register the
CDI-PC
 domain.
After you convert the non-Kerberos
CDI-PC
 domain to Kerberos
CDI-PC
 domain, the domain appears offline in Informatica Intelligent Cloud Services. You must register the domain again.
If a domain appears offline, you can try to reestablish a connection with the domain. If the status is offline because the domain is shut down, you first need to start the domain. After the domain is started, you can reestablish a connection with the domain.
0 COMMENTS
We’d like to hear from you!