Bookshelf Home | Contents | Index | Search | PDF

Security Guide for Siebel eBusiness Applications > Communications and Data Encryption >

Password Encryption

---

For user authentication security, user or credentials passwords can be encrypted. Encrypted passwords are stored in the Active Directory, LDAP directory, or the database, depending on which type of user authentication is being used.

User password encryption can be implemented for both database and Siebel security adapter authentication, but not Web Single Sign-On authentication.
Credentials password encryption can be implemented for Web Single Sign-On authentication and Siebel security adapter authentication, but not database authentication.

Password encryption is useful for preventing unauthorized users from bypassing Siebel applications and logging directly into the Siebel Database using an RDBMS tool such as SQL*Plus.

For more information on user password encryption, see User Password Encryption. For more information on credentials password encryption, see Credentials Password Encryption.

Siebel Systems provides a password encryption utility (shipped on separate CD-ROM) that can be used to encrypt passwords. This utility uses a proprietary hash function to encrypt passwords. Some things to remember about password encryption include:

The password encryption utility does not automatically store hashed passwords in the Siebel Database or directory. Instead, the administrator is responsible for setting up database accounts using the hashed passwords.
Instead of using a Siebel-supplied algorithm, customers can access their own encryption or hash algorithms, using the Siebel Security Adapter Software Developers Kit. For more information, see Security Adapters for External Authentication.

Bookshelf Home | Contents | Index | Search | PDF