Bookshelf Home | Contents | Index | Search | PDF |
Security Guide for Siebel eBusiness Applications > Security Adapter Authentication > Setting Up Security Adapter Authentication: A Scenario >
Editing Parameter Values in the Application Configuration File
Provide the parameter values as indicated by the guidelines in Table 8 in the configuration file for the Siebel application you are implementing. For a list of Siebel application configuration files, refer to Siebel Server Administration Guide.
NOTE: You can use a text editor to make changes to an application configuration file or you can use the LDAP/ADSI Configuration Utility to make these changes. For more information, see Using the LDAP/ADSI Configuration Utility.
For information about editing an application's configuration file and about the purposes for the parameters, see Siebel Application Configuration File Parameters.
Table 8. Siebel Application Configuration File Parameter Values Section Parameter Guidelines for Siebel LDAP and ADSI Adapters [SWE]AllowAnonUsers
EnterTRUE
for LDAP and ADSI.SecureLogin
EnterTRUE
orFALSE
. IfTRUE
, the login request (HTTP POST) from the login form is transmitted using HTTPS.For information about other requirements for secure login, see Secure Login. [SecurityAdapters] Add a line for each security adapter you may implement; most likely there is only one. The section for the particular security adapter you implement, for example [LDAP] or [ADSI]DllName
You do not need to include the file extension (for examplesscfldap.dll
).If you entersscfldap
here, it is converted internally to the actual filename for your operating system.ServerName
LDAP and ADS, enter the name of the machine on which the LDAP or ADS server runs.For more information, see Siebel Application Configuration File Parameters.Port
BaseDN
The Base Distinguished Name is the root of the tree under which users are stored. Users can be added directly or indirectly below this directory."ou=People, o=domain_name"
In the example, "o
" denotes "organization" and is the domain name system (DNS) name for this server, such asmachine.company.com
. "ou
" denotes "organization unit" and is the subdirectory in which users are stored."CN=Users, DC=machine_name, DC=domain_name, DC=com"
Domain Controller (DC) entries are the nested domains that locate this server. Common Name (CN) entries are the specific paths for the user objects in the directory. Therefore, adjust the number of DC and CN entries to represent your architecture.UserNameAttributeType
If you use a different attribute in the directory for the Siebel user ID, enter that attribute name.PasswordAttributeType
- The LDAP entry must be
userPassword
. If a different value is specified, the LDAP security adapter will not function properly.- ADS does not store the password in an attribute, so this parameter is not used with the Siebel ADSI adapter. If this parameter is present, comment it out, or delete the line from the file.
CredentialsAttributeType
The LDAP and ADSI suggested entry isdbaccount
If you used a different attribute in the directory for the database account, enter that attribute name.ApplicationUser
"uid=APPUSER, ou=People, o=
domain
_name
""CN=APPUSER, CN=Users, DC=
machine_name
, DC=domain_name
, DC=com"Adjust your entry if your implementation uses a different attribute for the user name, a different user name for the application user, or a different base DN.ApplicationPassword
For LDAP and ADSI, enterAPPUSERPW
or the password assigned to the application user.SharedCredentialsDN
"uid=anonymous user User ID, ou=People, o=
domain_name
"For example:"uid=GUESTCST, ou=People, o=siebel.com"
"CN=anonymous user User ID, CN=Users, DC=
machine_name
, DC=domain_name
, DC=com"For example:"CN=GUESTCST, CN=Users, DC=qa1, DC=siebel, DC=com"
RolesAttributeType
SslDatabase
UseSSL
EncryptCredentialsPassword
EncryptApplicationPassword
SingleSignOn
TrustToken
UseAdapterUsername
SiebelUsernameAttributeType
UseRemoteConfig
If these parameters are present, comment out each with a semicolon at the beginning of the line. Alternatively, you can delete these parameter lines from the file.
Bookshelf Home | Contents | Index | Search | PDF |
Security Guide for Siebel eBusiness Applications Published: 23 June 2003 |