Implementing Siebel eBusiness Applications on DB2 UDB for z/OS and OS/390 > Security Concepts for z/OS and OS/390 >

About Siebel Application Data Security

All users must provide a user name and password to connect to Siebel eBusiness Applications, regardless of whether they access them through the Siebel Dedicated Web Client, the Siebel Mobile Web Client, or the Siebel Web Client.

Each user name must be preregistered within the Siebel application and associated with a unique record. This unique record determines a user's visibility to data by association with Positions and Responsibilities.

• Responsibilities determine which screens and views are available to an employee.
• Positions determine which data rows appear in those views, and which data rows are synchronized to a Mobile Web Client's local database.

Siebel eBusiness Applications allow you to control user access to information from within the application. Because the need to know specific information is usually related to a particular responsibility, data access is defined by responsibility rather than by user.

Attachments that are not stored in the database are stored in a compressed, encrypted format on the Siebel File Server. Attachments are linked to data rows, and access to attachments is therefore restricted by a user's responsibilities and position.

For more information on these topics, refer to Applications Administration Guide and Security Guide for Siebel eBusiness Applications.