Security Settings for the Web Browser

Modified topic. Additional information is provided on Siebel Business Applications' support for the security features provided by Microsoft Internet Explorer, Windows XP, and Vista.

Changing System Administrator Passwords on Microsoft Windows

Changing the Siebel Administrator Password on UNIX

Modified topics. After changing the Siebel administrator database account password, you must re-create the Siebel Server system service using the new administrator password.

Securing Communications Between the Siebel Web Client and Actuate Active Portal

Modified topic. You must enable Secure Sockets Layer (SSL) for communication between the Siebel Web Client and the Actuate Active Portal if you have enabled SSL for communications between the Siebel Server, the Web server, and the Siebel Web Client.

Using the Siebel Strong Encryption Pack with Siebel Reports Server

New topic. It describes the steps you must perform to use the Siebel Strong Encryption Pack with Siebel Reports Server.

About Certificates and Key Files Used for SSL Authentication

Modified topic. The information on the supported certificate file formats has been updated. Additional information is provided on using certificates that use encryption key sizes larger than 1024 bits.

Installing Certificate Files

Modified topic. When you use the mwcontrol utility to install a certificate file, the certificate file must be located on a local volume.

The mwcontrol utility is only used for installing certificate authority and certificate files if you are implementing SSL for the EAI HTTP Transport business service.

Configuring SSL Mutual Authentication

Modified topic. Client authentication using EAI HTTP Transport for outbound Web services is supported in the current release.

Requirements for Data Encryption

Modified topic. When creating a link object to define a one-to-many relationship between two business components, the source and destination fields specified in the link object definition must not be encrypted fields.

Configuring Encryption and Search on Encrypted Data

Modified topic. You cannot encrypt columns in database tables without the assistance of Oracle's Application Expert Services.

Installing the Siebel Strong Encryption Pack

Modified topic. After installing the Siebel Strong Encryption Pack, you must reencrypt the Siebel administrator password.

Reencrypting Masked Parameters

Modified topic. The parameters that you must reencrypt if you increase the encryption level are described. Information is also provided on where each parameter can be changed.

Comparison of LDAP and ADSI Security Adapters

New topic. It describes the differences in functionality provided by the Lightweight Directory Access Protocol (LDAP) and Active Directory Services Interfaces (ADSI) security adapters.

About Installing LDAP Client Software

Modified topic. The instructions for installing the IBM LDAP Client and IBM GSKit have been amended.

Installing the IBM LDAP Client and IBM GSKit on Oracle Solaris

Modified topic. Before installing the IBM LDAP Client and GSKit on Oracle Solaris, you must relocate any non-IBM LDAP files that exist on Oracle Solaris.

About Migrating from Database to LDAP or ADSI Authentication

New topic. It describes the issues you must consider when migrating from database authentication to LDAP or ADSI authentication, and it outlines the tasks involved.

Configuring Adapter-Defined User Name

Modified topic. The OM - Username BC Field parameter is case sensitive. The value specified for this parameter must match the value specified for the parameter in Siebel Tools.

Logging Out of Siebel Business Applications

New topic. To log out of Siebel Business Applications that use standard interactivity mode, you must choose File and then Close from the Web browser menu.

Deactivating an Employee

Modified topic. To assign an employee a status of inactive, you must change the employee's status to Terminated.

Creating Task Links for a Responsibility

Modified topic. You can create hyperlinks between a responsibility and the tasks associated with it. These task links are then displayed on the home page for employees assigned the responsibility.

About Using the Special Frame Class and User Properties

Modified topic. To override the visibility of an MVG applet set at the business component level, change the frame class of the applet to CSSSWEFrameListVisibilityMvg.

Parameters for Database Authentication

Modified topic. The description of the Propagate Change parameter has been revised. An administrator can change only the password associated with his or her own login ID using the Administration - User screen.

Parameters for LDAP or ADSI Authentication

Modified topic. If you use the LDAP security adapter to authenticate against Microsoft Active Directory, set the value of the Password Attribute Type parameter to either unicodePWD or userPassword, depending on the code page used by the directory server.

Types of Encryption

Modified topic. Communications encryption between the Siebel Server and the Database Server is performed externally to Siebel Business Applications. Contact your RDBMS vendor for information on how to configure communications encryption between the Siebel Server and the Database Server.

Enabling SSL Acceleration for Web Server and Web Client Communications

New topic. In Siebel 8.0, you can deploy SSL acceleration for communications between Siebel Web Clients and the Web Server.

Modifying the Input File

Modified topic. You can optionally specify the WHERE clause, the N flag, and the H flag for each column in the encrypt_colums.inp file. Optional flags are specified on the line following the column name line.

Running the Encryption Upgrade Utility

Modified topic. Added a warning that you must not run the Encryption Upgrade utility with the NONE parameter specified on the same data twice. If you do, you will encrypt data that is already encrypted, leading to a permanent loss of data.

Using Database Authentication with MS SQL Server

Modified topic. If you implement database authentication and you are using Siebel 8.0 with a Microsoft SQL Server database, ensure that you select the appropriate ODBC DSN configuration settings. Select the SQL Server authentication option to ensure that Siebel Web clients cannot log in to Siebel Business Applications without providing a password.

Configuring the siebenv.csh and siebenv.sh Scripts for the LDAP Client

New topic. After installing the IBM LDAP Client, you must add the directory path of the IBM LDAP 6.0 libraries to the library path environment variable in either the siebenv.csh (C shell) or siebenv.sh (Bourne or Korn shell) script file.

Configuring Secure Communications for Security Adapters

Modified topic. If you use the LDAP security adapter to authenticate against Active Directory, you must enable SSL if you want to manage user passwords or create new users in the Active Directory.

Security Adapters and the Siebel Developer Web Client

Modified topic. Integrated Security functionality is only supported for Siebel Developer Web clients that access Oracle and Microsoft SQL Server databases. This functionality is not available for Siebel Web clients or Siebel Mobile Web clients.

Administering Access Control for Business Processes

New topic. Business processes can be accessed by all users by default, unless the administrator restricts access to a specified business process.

Firewall and Proxy Server Support

Modified topic. Now includes examples to illustrate Siebel Business Applications' support for rewriting of the host names and IP addresses of Web servers.

About Selecting Port Numbers

Modified topic. Now includes the range of dynamic port numbers that Siebel Business Applications use.

About Siebel Security Adapters

Modified topic. Provides guidelines on the type of security adapter to use with Siebel Server batch, infrastructure and system management components.

About LDAP or ADSI Security Adapter Authentication

Modified topic. Outlines enhancements to the Siebel LDAP security adapter for release 8.0.

About Configuring Visibility of Pop-Up and Pick Applets

Modified topic. Describes how to use the applet user property Override Visibility View and the business component user property Popup Visibility Auto All.

Changing Passwords in the Siebel Management Framework

New topic. Describes how to implement Siebel user account password changes in the Siebel Management Framework.

Changing the Siebel Enterprise Security Token

Modified topic. The Web Update Protection Key is now called the Siebel Enterprise Security Token. The corresponding eapps.cfg parameter WebUpdatePassword is now SiebelEntSecToken.

Managing Encrypted Passwords in the eapps.cfg File

Modified topic. The value for the Trust Token (alias TrustToken) in the eapps.cfg file can now be encrypted.

Auditing for Data Continuity

Modified topic. Siebel Business Applications can now maintain an audit trail of when business component fields have been viewed or exported and who viewed or exported business component fields.

Process of Configuring Secure Communications

Modified topic. Describes changes to the Siebel Configuration Wizard used to configure secure communications.

About Data Encryption

Modified topic. This topic now includes formulae to calculate the amount of space to allocate for encrypted data.

Managing the Key File Using the Key Database Manager

Modified topic. The number of characters that you specify for a key cannot exceed 255.

About Upgrading Data to a Higher Encryption Level

Modified topic. The input file for the Encryption Upgrade Utility now supports use of the SQL WHERE keyword.

Installing the Siebel Strong Encryption Pack

New topic. Describes how to install the Siebel Strong Encryption Pack.

About User Authentication

Modified topic. The security adapter used for authentication against Lightweight Directory Access Protocol (LDAP)-compliant directories has been enhanced to include authentication against Microsoft Active Directory.

About Installing LDAP Client Software

Modified topic. This release uses upgraded versions of the LDAP client and GSKit. This topic now describes how to install the LDAP client and GSKit on Linux.

Configuring LDAP or ADSI Security Adapters Using the Siebel Configuration Wizard

Modified topic. Describes changes to the Siebel Configuration Wizard used to configure LDAP and ADSI security adapter.

Configuring Secure Communications for Security Adapters

Modified topic. To configure Secure Sockets Layer (SSL) for the Active Directory Services Interface (ADSI) security adapter, you must set the profile parameter UseSsl to TRUE.

Configuring the Shared Database Account

Modified topic. Database credentials for the shared database account can be stored as profile parameters when you use the LDAP security adapter. This functionality is not available if you use the ADSI security adapter.

Managing Tasks Through Responsibilities

New topic. A Siebel administrator can now control who accesses tasks.

Siebel Application Configuration File Parameters

Modified topic. Includes a description of the DisableReverseProxy parameter. Set a value for this parameter as described if you deploy IBM Tivoli Access Manager WebSEAL to authenticate users of Siebel Business Applications with high interactivity in a Web Single Sign-On deployment.

Seed Responsibilities

Modified topic. This release includes three new seed responsibilities that you must assign to Siebel users in the Siebel Management Framework.