Configuring Secure Communication to Microsoft SQL Server in PowerCenter

Similar documents
How to Resolve the POODLE Vulnerability in Native Connection to Oracle

Connect to an SSL-Enabled Microsoft SQL Server Database from PowerCenter on UNIX/Linux

How to Configure a Secure Connection to Microsoft SQL Server

Configure an ODBC Connection to SAP HANA

Using Microsoft Windows Authentication for Microsoft SQL Server Connections in Data Archive

Migrating the Domain Configuration Repository During an Upgrade

Secure Communication Requirements

Using Informix with PowerCenter

HTTPS Configuration for SAP Connector

Using LDAP Authentication in a PowerCenter Domain

Secure Agent Quick Start for Windows

Configuring Hadoop Distributed File Service as an Optimized File Archive Store

Configure Managed File Transfer Endpoints

How to Create Keystore and Truststore Files for Secure Communication in the Informatica Domain

Entrust Managed Services PKI. Configuring secure LDAP with Domain Controller digital certificates

Configuring Notification for Business Glossary

Windows Live Mail Setup Guide

Jolly Server Getting Started Guide

Plug-In for Informatica Guide

How to Implement Two-Way SSL Authentication in a Web Service

HP Device Manager 4.7

Configuring TLS Security for Cloudera Manager

Creating and Managing Certificates for My webmethods Server. Version 8.2 and Later

Cisco SSL Encryption Utility

Installation Procedure SSL Certificates in IIS 7

Replacing vcenter Server 4.0 Certificates VMware vsphere 4.0

SQL Server 2008 and SSL Secure Connection

MadCap Software. Upgrading Guide. Pulse

DIGIPASS KEY series and smart card series for Juniper SSL VPN Authentication

Reconfiguring VMware vsphere Update Manager

MICROSTRATEGY 9.3 Supplement Files Setup Transaction Services for Dashboard and App Developers

PaperStream Connect. Setup Guide. Version Copyright Fujitsu

SQL EXPRESS INSTALLATION...

Step-by-step installation guide for monitoring untrusted servers using Operations Manager (Part 1 of 3)

Configuring IBM Cognos Controller 8 to use Single Sign- On

Reconfiguration of VMware vcenter Update Manager

Outlook 2010 Setup Guide (POP3)

Reconfiguring VMware vsphere Update Manager

Windows Server Update Services 3.0 SP2 Step By Step Guide

Scenarios for Setting Up SSL Certificates for View

Integration Guide. Microsoft Active Directory Rights Management Services (AD RMS) Microsoft Windows Server 2008

Data Domain Profiling and Data Masking for Hadoop

Customer Tips. Xerox Network Scanning HTTP/HTTPS Configuration using Microsoft IIS. for the user. Purpose. Background

How to Implement Transport Layer Security in PowerCenter Web Services

Installation and Configuration Guide Simba Technologies Inc.

How to install and use the File Sharing Outlook Plugin

ODBC Driver User s Guide. Objectivity/SQL++ ODBC Driver User s Guide. Release 10.2

Installing SQL Express. For CribMaster 9.2 and Later

MIGRATING TO AVALANCHE 5.0 WITH MS SQL SERVER

Certificate Management for your ICE Server

NovaBACKUP xsp Version 15.0 Upgrade Guide

X.509 Certificate Generator User Manual

Installing and configuring Microsoft Reporting Services

MANUFACTURER RamSoft Incorporated 243 College St, Suite 100 Toronto, ON M5T 1R5 CANADA

Sophos Mobile Control Installation guide. Product version: 3

NSi Mobile Installation Guide. Version 6.2

SSL Insight Certificate Installation Guide

Tool Tip. SyAM Management Utilities and Non-Admin Domain Users

Aradial Installation Guide

SafeGuard Enterprise Web Helpdesk

Unifying Information Security. Implementing TLS on the CLEARSWIFT SECURE Gateway

SolarWinds Technical Reference

etoken Enterprise For: SSL SSL with etoken

Dell Statistica Statistica Enterprise Installation Instructions

CIMHT_006 How to Configure the Database Logger Proficy HMI/SCADA CIMPLICITY

Using the DataDirect Connect for JDBC Drivers with the Sun Java System Application Server

Generating SSH Keys and SSL Certificates for ROS and ROX Using Windows AN22

SafeGuard Enterprise Web Helpdesk. Product version: 6 Document date: February 2012

for Networks Installation Guide for the application on the server August 2014 (GUIDE 2) Lucid Exact Version 1.7-N and later

Obtaining SSL Certificates for VMware View Servers

Creating IBM Cognos Controller Databases using Microsoft SQL Server

NovaBACKUP xsp Version 12.2 Upgrade Guide

Configure SecureZIP for Windows for Entrust Entelligence Security Provider 7.x for Windows

for Networks Installation Guide for the application on the server July 2014 (GUIDE 2) Lucid Rapid Version 6.05-N and later

Application Note AN1502

Xerox Multifunction Devices. Verify Device Settings via the Configuration Report

webmethods Certificate Toolkit

Migrating MSDE to Microsoft SQL 2008 R2 Express

Implementing Microsoft SQL Server 2008 Exercise Guide. Database by Design

Installation Instruction STATISTICA Enterprise Small Business

For Active Directory Installation Guide

Moving a database from MS Access to MS SQL server. Introduction. Selecting the database. Creating a Data Source

Using Internet or Windows Explorer to Upload Your Site

Microsoft Exchange 2010 and 2007

High Availability Configuration

Generating an Apple Push Notification Service Certificate

SAS 9.3 Foundation for Microsoft Windows

Customer Tips. Configuring Color Access on the WorkCentre 7328/7335/7345 using Windows Active Directory. for the user. Overview

SimbaEngine SDK 9.4. Build a C++ ODBC Driver for SQL-Based Data Sources in 5 Days. Last Revised: October Simba Technologies Inc.

Data Domain Discovery in Test Data Management

LoadMaster SSL Certificate Quickstart Guide

SELF SERVICE RESET PASSWORD MANAGEMENT BACKUP GUIDE

Obtaining SSL Certificates for VMware Horizon View Servers

Matisse Installation Guide for MS Windows. 10th Edition

Server Installation Guide ZENworks Patch Management 6.4 SP2

BEA Weblogic Guide to Installing Root Certificates, Generating CSR and Installing SSL Certificate

How To Manage Storage With Novell Storage Manager 3.X For Active Directory

for Networks Installation Guide for the application on a server September 2015 (GUIDE 2) Memory Booster version 1.3-N and later

New Features... 1 Installation... 3 Upgrade Changes... 3 Fixed Limitations... 4 Known Limitations... 5 Informatica Global Customer Support...

Sophos for Microsoft SharePoint startup guide

Transcription:

Configuring Secure Communication to Microsoft SQL Server in PowerCenter Copyright Informatica LLC 2016. Informatica Corporation. No part of this document may be reproduced or transmitted in any form, by any means (electronic, photocopying, recording or otherwise) without prior consent of Informatica Corporation. All other company and product names may be trade names or trademarks of their respective owners and/or copyrighted materials of such owners.

Abstract You can enable secure communication with SSL encryption from PowerCenter to Microsoft SQL Server. When you use an ODBC provider type in the Microsoft SQL Server connection, you must enable DSN to set the SSL encryption. This article describes how you can configure secure communication from PowerCenter to Microsoft SQL Server with a native connection for Windows and UNIX. Supported Versions PowerCenter 10.0-10.1.1 Table of Contents Overview.... 2 Step 1. Import a Microsoft SQL Server SSL Certificate to a Truststore... 2 Step 2. Configure a Microsoft SQL Server Data Source... 3 Configure a Microsoft SQL Server Data Source for Windows.... 3 Configure a Microsoft SQL Server Data Source on UNIX.... 4 Step 3. Test a Microsoft SQL Server Connection to Microsoft SQL Server... 5 Test a Microsoft SQL Server Connection to Microsoft SQL Server on Windows.... 5 Test a Microsoft SQL Server Connection to Microsoft SQL Server on UNIX.... 6 Step 4. Configure a Microsoft SQL Server Connection in PowerCenter.... 6 Overview You can enable secure communication from PowerCenter to Microsoft SQL Server. When you read or write data to a third-party database, you can secure the communication with SSL encryption provided by the third-party database. In PowerCenter, you can configure secure communication to Microsoft SQL Server when you run a mapping with Microsoft SQL Server sources or targets. To configure secure communication to Microsoft SQL Server on the machine where you run the PowerCenter Integration Service, perform the following tasks: 1. Import a Microsoft SQL Server SSL certificate to a truststore. 2. Configure a Microsoft SQL Server data source. 3. Test a Microsoft SQL Server connection to Microsoft SQL Server. 4. Create the Microsoft SQL Server connection in PowerCenter and run the mapping. Step 1. Import a Microsoft SQL Server SSL Certificate to a Truststore To authenticate the Microsoft SQL Server SSL certificate, you must import the Microsoft SQL Server's public certificate into the client's truststore. Before you authenticate the Microsoft SQL Server SSL certificate, you must install and download OpenSSL. 2

You can download OpenSSL at the following link: https://www.openssl.org/community/binaries.html 1. Ask your database administrator to provide you with the Microsoft SQL Server SSL certificate. For example, your database administrator can provide you with the certificate file, mysqlserver.cer. 2. Go to Start > Run. 3. In the Run dialog box, enter cmd. 4. At the command prompt, enter the openssl command to start OpenSSL. 5. Based on the server certificate format, run the appropriate openssl command to generate an output text. If the server certificate is in PEM format, run the following openssl command: x509 -inform PEM -in c:\mysqlserver.cer text If the server certificate is in DER format, run the following openssl command: x509 -inform DER -in c:\mysqlserver.cer text 6. Copy the output text and save it as a.txt file. For example, mysqlserver.txt 7. At the OpenSSL prompt, enter the following command to generate the truststore file (*.pfx) from the server SSL certificate: pkcs12 -in <fullpath_to_your_server_ssl_certificate_output_text> -out <full_path_to_truststore_filename.pfx> -passout <pass_phrase_to_encrypt_output_private_keys> -nokeys -export For example, enter the following command: pkcs12 -in C:\temp\mysqlserver.txt -out C:\temp1\TrustStore.pfx -passout pass: -nokeys -export where mysqlserver.txt is the output that you generated in the previous command. TrustStore is the name of the truststore file that you plan to generate. The command creates the PKCS#12 file by reading the certificates in the input path. The command specifies the output file name to write the PKCS#12 file without writing any private keys in the output file. Step 2. Configure a Microsoft SQL Server Data Source Effective in PowerCenter 10.0, the Microsoft SQL Server native connection uses DataDirect SQL Server ODBC driver. You can configure the Microsoft SQL Server data source in different ways based on whether the PowerCenter Integration Service runs on Windows or UNIX. Configure a Microsoft SQL Server Data Source for Windows 1. Open the Microsoft ODBC Administrator. 2. Go to the system DSN tab. 3. Click Add. 4. Select DataDirect 7.1 New SQL Server Wire Protocol. 5. Click Finish. 6. Enter the data source name. 7. Enter the host name. A host name is the machine where you installed the Microsoft SQL Server database. 8. Enter the port number. Default is 1433. 9. Enter the Microsoft SQL Server database name. 3

10. On the security tab of DSN, set the following secure database parameters: Property Encryption Method Required. Indicates whether data is encrypted when transmitted over the network. This parameter must be set to SSL. For example: Encryption Method = 1 - SSL ValidateServerCertificate HostName in Certificate CryptoProtocolVersion Truststore Truststore Password Required. Indicates whether Informatica validates the certificate that the database server sends. Default is true. Note: To validate a server certificate, you must use a CA-signed SSL certificate. If you are using a self-signed SSL certificate, disable validate server certificate. Otherwise, the connection will fail. Required if ValidateServerCertificate is true. Host name of the machine that hosts the secure database. If you specify a host name, PowerCenter validates the host name included in the connection string against the host name in the SSL certificate. You can verify the host name with the help of your database administrator. The host name is case sensitive. Optional. Specifies the cryptographic protocol to use to connect to a secure database. Set the value based on the database settings recommended by your database administrator. Required if ValidateServerCertificate is true. Absolute path of the truststore file name that you created in Step 1. Import a Microsoft SQL Server SSL Certificate to a Truststore on page 2. Required if ValidateServerCertificate is true. Password that you used in Step 1. Import a Microsoft SQL Server SSL Certificate to a Truststore on page 2. Configure a Microsoft SQL Server Data Source on UNIX 1. Set the environment variable ODBCINI to point it to the odbc.ini file path. By default, the odbc.ini path is in the following location: <INFA_HOME>\ODBC7.1\odbc.ini. 2. Open the odbc.ini file. 3. Under the ODBC Data Sources section of the odbc.ini file, add a data source name with a description. For example, you can enter the following data source details in the odbc.ini file: [ODBC Data Sources] SQLSERVER_SSL=SQL Server with SSL encryption 4. Enter the following properties for the new data source entry in the odbc.ini file: Property Driver HostName Required. Absolute path to the Data Direct New SQL Server ODBC driver. By default, the driver is located at <INFA_HOME>/ODBC7.1/lib/DWsqls27.so Optional. Describes the connection information. Required. Name of the machine where you installed the Microsoft SQL Server database. PortNumber Required. Port where the Microsoft SQL Server database server listens. Default is 1433. 4

Property Database EncryptionMethod ValidateServerCertific ate TrustStore TrustStore Password HostNameInCertificate CryptoProtocolVersion Required. Name of the Microsoft SQL Server database. Required. Indicates whether data is encrypted when transmitted over the network. This parameter must be set to SSL. To enable SSL, set it to 1. To disable, set it to 0. Default is disabled. Required. Indicates whether Informatica validates the certificate that the database server sends. To enable, set it to 1. To disable, set it to 0. Default is 1 (Enabled). Note: Validate server certificate will work only if you are using a CA-signed certificate. If you are using a self-signed certificate, disable validate server certificate. Else, the connection will fail. Required if ValidateServerCertificate is true. Absolute path of the truststore file name that you earlier created in Step 1. Import a Microsoft SQL Server SSL Certificate to a Truststore on page 2. Required if ValidateServerCertificate is true. Password that you used earlier in Step 1. Import a Microsoft SQL Server SSL Certificate to a Truststore on page 2. Required if ValidateServerCertificate is true. Host name of the machine that hosts the secure database. If you specify a host name, Informatica validates the host name included in the connection string against the host name in the SSL certificate. You can verify the host name with the help of your database administrator. The host name is case-sensitive. Optional. Specifies the cryptographic protocol to use to connect to a secure database. Set the value based on the database settings recommended by your database administrator. Sample data source entry: [SQLSERVER_SSL] Driver=/home/Informatica/10.0.0/ODBC7.1/lib/DWsqls27.so =SQL Server Connection with encryption HostName=INQAKRH01 PortNumber=1433 Database=SQLDB EncryptionMethod=1 ValidateServerCertificate=1 TrustStore=/home/truststore/TrustStore_INQAKRH01.pfx TrustStorePassword=Trustpass123 HostNameInCertificate=inqakrh01.informatica.com CryptoProtocolVersion=TLSv1.2 Step 3. Test a Microsoft SQL Server Connection to Microsoft SQL Server You can test the Microsoft SQL Server connection in different ways depending on whether the PowerCenter Integration Service runs on Windows or UNIX. Test a Microsoft SQL Server Connection to Microsoft SQL Server on Windows 1. On Windows, open Microsoft ODBC Administrator. 2. Select the DSN that you created in Configure a Microsoft SQL Server Data Source for Windows on page 3. 3. Click Configure. 4. Click Test Connect. 5. Enter the valid database user name and password. 5

6. Click OK. Test a Microsoft SQL Server Connection to Microsoft SQL Server on UNIX To test connection on UNIX, use the Informatica Global Customer Support toolssgodbc present under the debugtools folder of the Informatica installation directory. Ensure that you have configured the ODBCINI environment variable to use the ssgodbc command. 1. In the command prompt, navigate to the location of the ssgodbc file path. The ssgodbc file is in the following directory: <INFA_HOME>/tools/debugtools/ssgodbc/<linux or unix version> For example, you can find the ssgodbc command for Linux 64 bit in the following path: <INFA_HOME>/tools/ debugtools/ssgodbc/linux64/ssgodbc.linux64 2. Run the ssgodbc command. For example, enter the following ssgodbc command: ssgodbc.linux64 -d SQLSERVER_SSL -u sqluser -p sqlpass123 -v In the example, -d refers to the data source name, -u refers to the database user name, -p refers to the database password, and -v refers to the verbose output. If the test connection is successful, the command prompt displays the database version and other details. You can close the ssgodbc command manually by pressing CTRL + C. If the test connection fails, you can review the related error message and edit the connection. Step 4. Configure a Microsoft SQL Server Connection in PowerCenter You can configure the connection to Microsoft SQL Server from the Workflow Manager. 1. Log in to the Workflow Manager. 2. Click Connections > Relational. The Relational Connection Browser dialog box appears. 3. Click New. The Select Type dialog box appears. 4. Select Microsoft SQL Server from the Select Type list. 5. Click New to create the Microsoft SQL Server connection. 6. Click OK. 6

The Connection Object Definition dialog box appears. 7. Enter the connection properties. 8. Select the Use DSN option. Verify that the connection string is the data source name that you created, such as SQLSERVER_SSL. 9. Click OK. The database connection appears in the Relational Connection Browser list. Select the Microsoft SQL Server connection to run the mapping with secure communication in PowerCenter. Author Sujitha Alexander Senior Technical Writer 7

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information