A forum for discussing DataStage<sup>®</sup> basics. If you're not sure where your question goes, start here.
Moderators: chulett , rschirm , roy
bono2
Participant
Posts: 2 Joined: Sun Feb 19, 2012 7:47 am
Post
by bono2 Sun Feb 19, 2012 7:58 am
Hi all,
chulett
Charter Member
Posts: 43085 Joined: Tue Nov 12, 2002 4:34 pmLocation: Denver, CO
Post
by chulett Sun Feb 19, 2012 8:41 am
Look into the -f option to read the credential information from a file and thus not expose them on the command line.
-craig"You can never have too many knives" -- Logan Nine Fingers
bono2
Participant
Posts: 2 Joined: Sun Feb 19, 2012 7:47 am
Post
by bono2 Sun Feb 19, 2012 8:57 am
I've already thought about it.
chulett
Charter Member
Posts: 43085 Joined: Tue Nov 12, 2002 4:34 pmLocation: Denver, CO
Post
by chulett Sun Feb 19, 2012 9:34 am
There is no other way... and you shouldn't need to 'expose' the file at all, you should be able to lock it down in a manner that your security people approve. Have you specifically ask them?
-craig"You can never have too many knives" -- Logan Nine Fingers
ray.wurlod
Participant
Posts: 54595 Joined: Wed Oct 23, 2002 10:52 pmLocation: Sydney, Australia
Contact:
Post
by ray.wurlod Sun Feb 19, 2012 11:39 am
When you get to version 8.7 you can strongly encrypt the password whether it's on the command line or in an authentication file.
IBM Software Services Group
chulett
Charter Member
Posts: 43085 Joined: Tue Nov 12, 2002 4:34 pmLocation: Denver, CO
Post
by chulett Sun Feb 19, 2012 3:34 pm
Good... that's how we are handling it with Informatica and the DoD at DISA.
-craig"You can never have too many knives" -- Logan Nine Fingers
ray.wurlod
Participant
Posts: 54595 Joined: Wed Oct 23, 2002 10:52 pmLocation: Sydney, Australia
Contact:
Post
by ray.wurlod Sun Feb 19, 2012 11:42 pm
... and you can specify your own encryption algorithm/software. The default (AES-128) is sufficient for my needs, even within Defence.
IBM Software Services Group
