Implementing Siebel eBusiness Applications on DB2 UDB for z/OS and OS/390 > Security Concepts for z/OS and OS/390 > z/OS and OS/390 Security >

About Using an External Security Adapter

An external security adapter is an interface that lets you use an external system to authenticate users. For example, you might employ an LDAP (Lightweight Data Access Protocol) repository, a protocol for storing and retrieving directory-related information that includes authentication services. LDAP can reside on the mainframe.

Using an external security adapter makes administration easier, because you do not have to create an account for each Siebel application user on the DB2 host. You can instead create a few generic database accounts that are used by multiple Siebel users.

When users log onto the Siebel application, the external security adapter validates user names, passwords, user roles, and database credentials against the information in the external system. If the external security adapter finds a match, it retrieves a generic set of user credentials (username and password) that supply access to the database. For LDAP, the generic set of user credentials can be the same for every user, if desired.

For more information about implementing an external security adapter, see the Security Guide for Siebel eBusiness Applications.