Bookshelf v8.0: Creating Users in the Directory

To implement Web SSO, you must create users in the ADSI directory, as described in this topic.

Create three users in the directory using values similar to those shown in Table 18. The attribute names, sAMAccountName and Password, are those suggested in this example. Your entries might vary, depending on how you make attribute assignments in Setting Up the ADSI Directory.

Table 18. Directory Records
User	sAMAccountName	Password	Database Account
Anonymous user	Enter the user ID of the anonymous user record for the Siebel application you are implementing. You can use a seed data anonymous user record, as described in Seed Data, for a Siebel customer or partner application. For example, for Siebel eService, enter `GUESTCST`. You can create a new user record or adapt a seed anonymous user record for a Siebel employee application.	`GUESTPW` or a password of your choice	username=`LDAPUSER` password=P
Application user	`APPUSER` or a name of your choice	`APPUSERPW` or a password of your choice	A database account is not used for the application user.
A test user	`TESTUSER` or a name of your choice	`TESTPW` or a password of your choice	username=LDAPUSER password=P

The database account for all three users is the same, and must match the database account reserved for externally-authenticated users described in About Creating a Database Login. P represents the password in that database account. For information about formatting the database account attribute entry, see Requirements for the LDAP or ADSI Directory.

CAUTION: Make sure the application user has privileges to search and write all records in the directory.

Siebel Security Guide		Copyright © 2011, Oracle and/or its affiliates. All rights reserved. Legal Notices.