Communities
A collaborative platform to connect and grow with like-minded Informaticans across the globe
Product Communities
Connect and collaborate with Informatica experts and champions
Discussions
Have a question? Start a Discussion and get immediate answers you are looking for
User Groups
Customer-organized groups that meet online and in-person. Join today to network, share ideas, and get tips on how to get the most out of Informatica
Get Started
Community Guidelines
Knowledge Center
Troubleshooting documents, product guides, how to videos, best practices, and more
Knowledge Base
One-stop self-service portal for solutions, FAQs, Whitepapers, How Tos, Videos, and more
Support TV
Video channel for step-by-step instructions to use our products, best practices, troubleshooting tips, and much more
Documentation
Information library of the latest product documents
Velocity (Best Practices)
Best practices and use cases from the Implementation team
Learn
Rich resources to help you leverage full capabilities of our products
Trainings
Role-based training programs for the best ROI
Certifications
Get certified on Informatica products. Free, Foundation, or Professional
Product Learning Paths
Free and unlimited modules based on your expertise level and journey
Resources
Library of content to help you leverage the best of Informatica products
Tech Tuesdays Webinars
Most popular webinars on product architecture, best practices, and more
Product Availability Matrix
Product Availability Matrix statements of Informatica products
SupportFlash
Monthly support newsletter
Support Documents
Informatica Support Guide and Statements, Quick Start Guides, and Cloud Product Description Schedule
Product Lifecycle
End of Life statements of Informatica products
Ideas
Events
Change Request Tracking
Marketplace
English
  • Multidomain MDM 10.5
  • All Products

Table of Contents

Search

  1. Preface
  2. Introduction to MDM Hub Security
  3. Resources
  4. Roles
  5. Users and User Groups
  6. Security Providers
  7. Application Level Security
  8. Certificate-Based Authentication
  9. Password Hashing
  10. Appendix A: Glossary

Security Guide

Security Guide

Back Next

Dynamic Data Masking Best Practices for the MDM Hub

Dynamic Data Masking Best Practices for the MDM Hub

You can use
Dynamic Data Masking
 effectively in the
MDM Hub
 with the help of suggested best practices.
Best practice to create
Dynamic Data Masking
 rules in the Rule Editor
Dynamic Data Masking
 evaluates rules in the Rule Editor from the top to the bottom. Therefore, if you create non-masking rules, you must put them above any masking rules you create so they can be effective.
Best practice to allow users to view unmasked data
Dynamic Data Masking
 does not mask data in the database. When you view data in the
MDM Hub
, the data appears masked. Use Create View statements in
Dynamic Data Masking
 to give users privileges to view unmasked data.
Best practice to block users
To block users from adding a record to which masking is applied, you must create a separate rule for each affected base object. Define a text matcher as
%INSERT%<BO_NAME>%<ROLE NAME>%
 and the Block Statement processing action.
Best practice to allow users to update masked data
By default, the
Dynamic Data Masking
 engine prevents users from editing tables with masked data. If you want to update masked data in the
MDM Hub
, you can create a rule in the
Dynamic Data Masking
 Rule Editor to allow a user to update masked columns.
Best practice to create rules with MDM_SYSTEM indicator
In the
MDM Hub
, the user MDM_SYSTEM is an internal indicator for system calls. MDM_SYSTEM does not appear in the roles list in the
Hub Console
.
Dynamic Data Masking
 applies masking based on the
MDM Hub
 roles that a user has. When you create
Dynamic Data Masking
 rules in the Rule Editor, do not create rules for the MDM_SYSTEM indicator alone. YouChart of Accounts Installation and Configuration Guide must combine MDM_SYSTEM with a user name or roles that belong to a user. You can combine the MDM_SYSTEM indicator with any other rule to create fine-grained rules in
Dynamic Data Masking
.
0 COMMENTS
We’d like to hear from you!