Siebel Installation Guide for UNIX > Requirements for Installing and Configuring Siebel Business Applications > Requirements for Installing and Configuring the Siebel Web Server Extension >
Requirements for Configuring Anonymous Users for the Siebel Web Server Extension
As noted in Configuring the SWSE Logical Profile, when you configure the SWSE logical profile, you are prompted for user names and passwords of Siebel users who will serve as anonymous users for employee applications and customer applications, respectively. Provide the credentials for the anonymous users, as appropriate for your deployment.
This topic is part of Requirements for Installing and Configuring the Siebel Web Server Extension.
The following are the two main types of anonymous users:
- Anonymous user for employee applications. Where applicable, the anonymous user for employee applications (sometimes called the employee user or the high interactivity user) starts the anonymous session that displays the login page to an end user for an employee application.
NOTE: Most of the employee applications can be deployed using either high interactivity or Siebel Open UI. Most of the employee applications are configured by default for high interactivity, while newer applications, such as the Siebel Mobile applications, require Siebel Open UI.
- Anonymous user for customer applications. Where applicable, the anonymous user for customer applications (sometimes called the contact user or the standard interactivity user) starts the anonymous session that displays the login page to an end user for a customer application, and allows anonymous navigation within the application. This user must have access to any public view in the application.
NOTE: Most of the customer applications can be deployed using either standard interactivity or Siebel Open UI. Most of the customer applications are configured by default for standard interactivity, while newer applications, such as Siebel eService for Siebel Open UI or Siebel Partner Portal for Siebel Open UI, require Siebel Open UI.
If, after initial configuration, you change the password for the database account that you are using for an anonymous user, or decide to specify a different anonymous user for a particular application, then you can edit the eapps.cfg or eapps_sia.cfg files manually and update values for the parameters AnonUserName and AnonPassword. Alternatively, you can re-create the SWSE logical profile and reapply it to each physical SWSE.
Record the credentials for each anonymous user in your deployment in the worksheet provided in Siebel Deployment Planning Worksheet.
For additional information about configuring anonymous users, see Siebel Security Guide.
Note the following guidelines and requirements:
- All anonymous users for your deployment must be defined in the Siebel database and must be defined as Siebel users. Strong passwords are highly recommended for anonymous user accounts. Anonymous users should have limited access rights, no more than is necessary for the usage context.
- If your Siebel application does not use functionality that requires anonymous browsing, then you can disable access by the anonymous user by setting the AllowAnonUsers parameter for the Application Object Manager to False. If anonymous browsing must be enabled, then you set AllowAnonUsers to True.
- Some Siebel application functionality that requires that anonymous browsing be enabled include using a Siebel login view (not just an HTML page), using external authentication such as LDAP, browsing by unregistered users, self-registration, and so on.
- If password encryption is in effect, then you must use the
encryptstring utility to encrypt any password before inserting it into eapps.cfg or eapps_sia.cfg as a value for AnonPassword. See also 475381.1 (Article ID) on My Oracle Support. This document was previously published as Siebel Alert 1306.
- The anonymous user for employee applications that you configure in the wizard is defined in eapps.cfg as a default that applies to all of the applications of this type. The AnonUserName and AnonPassword parameters are defined once, in the [defaults] section of this file.
- The anonymous user for customer applications that you configure in the wizard is defined in eapps.cfg and eapps_sia.cfg for each application of this type. The AnonUserName and AnonPassword parameters are defined in separate application-specific sections of these files.
- To use application-specific anonymous users, you must define AnonUserName and AnonPassword in separate application-specific sections of eapps.cfg or eapps_sia.cfg.
- Optionally, you can create new database users before initial configuration through editing the grantusr.sql script, which you review, modify, and execute before you install the Siebel database. You still must add corresponding Siebel users. For more information, see Creating Table Owner and Administrator Accounts.