Bookshelf Home | Contents | Index | PDF |
Siebel Security Guide > Security Adapter Authentication > Security Adapter Deployment Options > Configuring the Shared Database AccountYou can configure your authentication system so that a designated directory entry contains a database account that is shared by many users; this is the shared database account. The shared database account option can be implemented in the following authentication strategies:
By default, the shared database account option is not implemented, and each user's database account exists in an attribute of that user's record in the directory. Because all externally authenticated users share one or a few database accounts, the same credentials are duplicated many times. If those credentials must be changed, you must edit them for every user. By implementing a shared credential, you can reduce directory administration. The shared database account option is used differently by the LDAP and ADSI security adapters:
The following topics describe in more detail how the LDAP and ADSI directory servers use the shared database account option. Storing Shared Database Credentials as Attributes of the Directory EntryThis topic describes how to implement a shared database account and store the database credentials as attributes of the directory entry you create for the shared database account. This option is available to you when you use an ADSI directory or an LDAP directory. To store the database credentials in an attribute of the directory entry
For information about setting Siebel Gateway Name Server configuration parameters, see Siebel Gateway Name Server Parameters. For Developer Web Client, define these parameters in the corresponding section in the application configuration file. Storing the Database Credentials as Profile ParametersThis topic describes how to configure a shared database account for an LDAP directory and store the database credentials as parameters of the LDAP Security Adapter profile (alias LDAPSecAdpt). This option is available to you only when you use LDAPSecAdpt. Do not use this option if you have to store more than one set of database credentials as only one set of database credentials can be stored as profile parameters. |
Siebel Security Guide | Copyright © 2011, Oracle and/or its affiliates. All rights reserved. Legal Notices. | |