Communities
A collaborative platform to connect and grow with like-minded Informaticans across the globe
Product Communities
Connect and collaborate with Informatica experts and champions
Discussions
Have a question? Start a Discussion and get immediate answers you are looking for
User Groups
Customer-organized groups that meet online and in-person. Join today to network, share ideas, and get tips on how to get the most out of Informatica
Get Started
Community Guidelines
Knowledge Center
Troubleshooting documents, product guides, how to videos, best practices, and more
Knowledge Base
One-stop self-service portal for solutions, FAQs, Whitepapers, How Tos, Videos, and more
Support TV
Video channel for step-by-step instructions to use our products, best practices, troubleshooting tips, and much more
Documentation
Information library of the latest product documents
Velocity (Best Practices)
Best practices and use cases from the Implementation team
Learn
Rich resources to help you leverage full capabilities of our products
Trainings
Role-based training programs for the best ROI
Certifications
Get certified on Informatica products. Free, Foundation, or Professional
Product Learning Paths
Free and unlimited modules based on your expertise level and journey
Resources
Library of content to help you leverage the best of Informatica products
Tech Tuesdays Webinars
Most popular webinars on product architecture, best practices, and more
Product Availability Matrix
Product Availability Matrix statements of Informatica products
SupportFlash
Monthly support newsletter
Support Documents
Informatica Support Guide and Statements, Quick Start Guides, and Cloud Product Description Schedule
Product Lifecycle
End of Life statements of Informatica products
Ideas
Events
Change Request Tracking
Marketplace
English
  • Multidomain MDM 10.3
  • All Products

Table of Contents

Search

  1. Preface
  2. Introduction
  3. Getting Started
  4. Data Director with Business Entities
  5. Data Director with Subject Areas
  6. Hierarchies and Relationships
  7. Workflows and Reviews

Data Director User Guide

Data Director User Guide

Back Next

Security and User Roles

Security and User Roles

An MDM administrator creates user roles, configures permissions to resources and privileges for the user roles, and assigns a user role to all user accounts. Based on your job requirements, your access to master data might be different than your colleagues.

Types of security for business entities records

The following types of security exist:
Access to records based on the type of business entity
A user role is granted permission to all types of business entities or some types of business entities. For example, you can see the types of business entities that you have permission to create in the New dialog box. You might have access to the business entities Customer and Product, but someone else might have access to the business entities Product and Supplier.
Actions you can perform on a record
Your user role grants you a set privileges to the records for each type of the business entities. For example, a business user might have permission to read and create Customer records, but a data steward might also be able to delete and merge Customer records. The privileges can be different for different types of business entities.
In
Data Director
, your user role privileges control the types of actions you can perform:
  • Create
    . You can create and save new master records.
  • Read
    . You can view master records.
  • Update
    . You can edit and save records.
  • Delete
    . You can delete master records.
  • Merge
    . You can identity and merge duplicate master records.
  • Unmerge
    . You can unmerge a previously merged master record.
Access to records when a field contains a specified value
Your user role privileges might be constrained by field filters, which control whether you have access to the master record based on a value in a field. If a record contains a value specified in a field filter, the user roles are allowed or denied access to the record based on the rules that are defined in the filter.
Access to a parent record when a child node has no records
Your user role privileges might be constrained by node filters, which control whether you have access to a parent record when the node contains no child records.
Access to fields in a record
Some fields might be hidden from your user role. For example, a view of a Supplier business entity might show a DUNs number to people in the finance department, but not to people in the line of business.
Values you can input
Some fields might restrict the values that you can select or add based on your user role.
Values in reference entities
Some fields might restrict the values that you can select from a list of common values, such as country or gender, based on your user role.

Losing access to records

You might lose access to a record that you have accessed in the past.
A loss of access can occur under the following circumstances:
  • You or someone else makes a change to a field value such that the record is now denied to your user role. For example, you add a European address to a person record and enable the GDPR check box. After you save the change, only the EU data stewards can access the person record.
  • The MDM administrator creates new field filters or node filters on a business entity. One or more of the filters contain a rule that denies access to your user role.
  • The MDM administrator changed the user role to which you were assigned.
  • The MDM administrator modified the privileges for your assigned user role.
0 COMMENTS
We’d like to hear from you!