Siebel Security Guide > Physical Deployment and Auditing >

Securing Siebel Document Server

This topic describes issues in securing communication between the Siebel Document Server and the Siebel Server.

For more information about Siebel Document Server, see Siebel Correspondence, Proposals, and Presentations Guide.

• All document templates come in through the Siebel Server. As such, the Siebel Server controls security and represents the only client or user that interacts directly with the Siebel Document Server. Restrict access to the file system and restrict execute permissions on the Siebel Document Server to the user that authenticates as the Siebel Server service.
• Microsoft provides some standard utilities in the Resource kit to lock down security on a generic Microsoft Windows computer. It is recommended that tools such as C2.exe be implemented to secure such an environment. These tools are readily available from Microsoft.
• Microsoft Word does support macro security options. Set macro security to high so that untrusted macros cannot be executed by the document server. This should not be an issue because macros are not required in proposals.
• Make sure that templates used by the Siebel Document Server or by end users are secured, and that there is a virus policy in place for any computer that supplies templates to the Siebel Document Server.