The DataStage production security issue

Post questions here relative to DataStage Server Edition for such areas as Server job design, DS Basic, Routines, Job Sequences, etc.

Moderators: chulett, rschirm, roy

Post Reply
ray.wurlod
Participant
Posts: 54607
Joined: Wed Oct 23, 2002 10:52 pm
Location: Sydney, Australia
Contact:
Contact ray.wurlod

Post by ray.wurlod »

It really depends on what you want to accomplish.

Some security is, of course, implemented at database level, so that the user ids and passwords contained in the stages that access those databases provide one level of security.

DataStage security itself is based on operating system group membership. In the Administrator you designate which UNIX (or WinNT) groups can run DataStage jobs, and which groups can develop them, and (perhaps) which have no DataStage rights at all.

You may have to re-think your UNIX security model to use group-based security rather than user-based security, so that you can use multiple user ids in Director. This has implications, too, for the crontab file(s) that will be used for jobs scheduled from Director.


Ray Wurlod
Education and Consulting Services
ABN 57 092 448 518
Top
Post Reply

Return to “IBM<sup>®</sup> Infosphere DataStage Server Edition”