Table of Contents

Search

  1. Preface
  2. Introduction
  3. IDD Concepts
  4. Implementation Process
  5. IDD Configuration Manager
  6. Manual IDD Configuration
  7. IDD Global Properties
  8. Appendix A: Sizing and Platform Requirements
  9. Appendix B: Application Components
  10. Appendix C: IDD Security Configuration
  11. Appendix D: Data Security
  12. Appendix E: Example Role-Based Security Configuration
  13. Appendix F: Data Masking
  14. Appendix G: Siperian BPM Workflow Engine
  15. Appendix H: Locale Codes
  16. Appendix I: Troubleshooting
  17. Appendix J: Glossary

Data Director Implementation Guide

Data Director Implementation Guide

Data Security Using Filters

Data Security Using Filters

Data security in Informatica Data Director is configured using the
Subject Area
dialog in the Informatica Data Director Configuration Manager. You can define filters on the subject area column to restrict and secure subject area data that individual users can access. Filters can be defined on primary object column, child column and grandchild column. You can set up any number of filters for a subject area and subject area group column.
Informatica Data Director data security supports the following types of values for security filters in table column type in the database:
  • String
  • Integer
  • Float
Table column value of type Date is not supported by data security filters of Informatica Data Director.
Consider the following rules and guidelines when you work with filters:
  • Each security filter is defined on columns in the subject area and consists of a filter value to be applied to a list of roles.
  • Security filters are based on exact values and not on wild card comparisons or ranges.
  • Filters must be defined on the match columns to apply security filters consistently across basic, extended, and advanced searches.
  • Filters can be combined. A user with multiple roles can have combinations of filters applied. The result is that a user has access to all the data available in each assigned role through a union of the filter assignments.
  • Filters on different columns can be combined to create multi-dimensional data security.
  • Multiple filters on a single column for a single role. A user has access to a union of all data that meet each filter.
  • Filters on multiple columns for a single role. A user has access to intersection of all data that meet each filter.
  • In IBM Db2 environments, filters on columns with a datatype of float do not filter beyond the scale of the column. For example, if the scale of the column is 1 and you set the filter to 1.2, values that are beyond the scale of the column, such as 1.21, are also accessible.
For more information, see the
Configuration Manager
online help.

0 COMMENTS

We’d like to hear from you!