Transports and Interfaces: Siebel Enterprise Application Integration > EAI JMS Transport > Enabling Authentication and Authorization for the EAI JMS Transport >

Configuring Credentials in JNDI

JNDI credentials are specified in the jndi.properties file by setting java.naming.security.principal to the username and java.naming.security.credentials to the password. For more details, refer to the JNDI specification. The construction of the naming context will automatically read the credentials from the jndi.properties file and use those credentials to connect to a JNDI server if authentication is required to perform JNDI lookup.

In Siebel CRM version 8.1.1.10 and later, and version 8.2.2.3 and later, for security reasons Siebel CRM enforces that the jndi.properties file must be encrypted using the scripts provided with the installation. The JNDIEncryptionCheck parameter in the JMSSubsys named subsystem is set to TRUE by default, so Siebel CRM requires that jndi.properties be encrypted. All newly created named subsystems based on JMSSubsys will have this security enforced, whereas older ones will continue to work with nonencrypted jndi.properties files.

In Siebel CRM version 8.1.1.7 and later, and version 8.2, the following encryption utilities are available:

• EncryptJndi.sh, found in the <SIEBEL_ROOT>/ses/siebsrvr/bin folder on UNIX
• EncryptJndi.bat, found in the <SIEBEL_ROOT>\ses\siebsrvr\bin folder on Windows