Bookshelf Home | Contents | Index | PDF     

Siebel Security Guide > Web Single Sign-On Authentication > Process of Implementing Windows Integrated Authentication >

Creating Users in the Directory (Windows Integrated Authentication)

To implement Web SSO using Windows Integrated Authentication, you must create users in the Active Directory, as described in this topic.

This task is a step in Process of Implementing Windows Integrated Authentication.

Create three users in the Active Directory, using values similar to those shown in Table 18. The attribute names, sAMAccountName and Password, are suggestions; your entries might vary depending on how you make attribute assignments in Setting Up Active Directory to Store Siebel User Credentials for Windows Integrated Authentication. Complete other attribute fields for each user, as needed.

Table 18. Active Directory Records
User
sAMAccountName
Password
Database Account

Anonymous user

  • Enter the user ID of the anonymous user record for the Siebel application you are implementing.

    You can use a seed data anonymous user record, as described in Seed Data, for a Siebel customer or partner application. For example, for Siebel eService, enter GUESTCST.

  • You can create a new user record or adapt a seed anonymous user record for a Siebel employee application.

GUESTPW or a password of your choice.

username=LDAPUSER password=P.

Application user

APPUSER or a name of your choice.

APPUSERPW or a password of your choice.

A database account is not used for the application user.

A test user

TESTUSER or a name of your choice.

TESTPW or a password of your choice.

username=LDAPUSER password=P.

The database account for all users is the same, and must match the database account reserved for externally-authenticated users described in Setting Up Active Directory to Store Siebel User Credentials for Windows Integrated Authentication. P represents the password in that database account. For information about formatting the database account attribute entry, see Requirements for the LDAP Directory or Active Directory.

NOTE:  Make sure the application user has privileges to search and write to all records in the directory.

    
Siebel Security Guide Copyright © 2013, Oracle and/or its affiliates. All rights reserved. Legal Notices.