Bookshelf Home | Contents | Index | PDF |
Siebel Security Guide > Security Adapter Authentication > Security Adapter Deployment Options > Configuring Adapter-Defined User NameYou can configure your authentication system so that the username presented by the user and passed to the directory to retrieve a user's database account is not the Siebel user ID. For example, you might want users to enter an adapter-defined user name, such as their Social Security number, phone number, email address, or account number. The security adapter returns the Siebel user ID of the authenticated user and a database account from the directory to the authentication manager. The adapter-defined user name option can be implemented in the following authentication strategies:
The adapter-defined user name must be stored in one attribute in your directory, while the Siebel user ID is stored in another attribute. For example, you might have users enter their telephone number, stored in the telephonenumber attribute, while their Siebel user ID is stored in the uid attribute. The UsernameAttributeType configuration parameter defines the directory attribute that stores the username that is passed to the directory to identify the user, whether it is the Siebel user ID or an adapter-defined user name. The OM - Username BC Field (alias UsernameBCField) parameter for the AOM defines the field of the User business component that underlies the attribute specified by UsernameAttributeType. Even if other requirements to administer user attributes in the directory through the Siebel client are met, you must also set the UsernameAttributeType parameter for the security adapter, and set the OM - Username BC Field parameter. If you do not define these parameters appropriately, changes through the Siebel client to the underlying field are not propagated to the directory. For example, for users to log in with their work phone number, you must specify UsernameAttributeType to be the directory attribute in which the phone number is stored, for example, telephonenumber, and you must define OM - Username BC Field to be Phone #, the field in the User business component for the work phone number. The following procedure outlines how to configure an adapter-defined user name. To configure an adapter-defined user name
For information about setting Siebel configuration parameters, see Configuration Parameters Related to Authentication. |
Siebel Security Guide | Copyright © 2011, Oracle and/or its affiliates. All rights reserved. Legal Notices. | |