Bookshelf Home | Contents | Index | PDF     

Siebel Installation Guide for Microsoft Windows > Configuring Siebel Enterprise Server Components and the Siebel Web Server Extension >

Configuring the Siebel Enterprise

The task for configuring the Siebel Enterprise lets you configure authentication using Siebel security adapters, TLS or SSL encryption, and related settings. You can also modify these settings for an existing Siebel Enterprise. In addition, you can configure many of these settings in the Siebel Server Configuration Wizard, to override Siebel Enterprise-level settings for the current Siebel Server. Many security settings also apply to configuring the SWSE logical profile. For detailed information about security settings in the Configuration Wizards, see Siebel Security Guide.

This task is a step in:

To configure the Siebel Enterprise

  1. Start the Siebel Enterprise Configuration Wizard.

    For more information, see Starting a Siebel Configuration Wizard.

  2. Choose Create New Configuration, then Configure a New Enterprise in a Gateway Name Server.
  3. Provide input as described in Table 6. The wizard displays help text with more information about most of these settings.
  4. Click Exit Configuration to exit the Configuration Wizard.

Configuration Settings for the Siebel Enterprise

Table 6 describes the settings for configuring the Siebel Enterprise.

Table 6. Settings for Configuring the Siebel Enterprise
Setting in Siebel Configuration Wizard (Parameter)
Description

Gateway Name Server Authentication User Account Name

Specify the user name for the account, usually a database account, that you are using for Siebel Gateway Name Server authentication. For more information about this account and the associated requirements, see Requirements for Siebel Gateway Name Server Authentication.

NOTE:  The first time that you configure a Siebel Enterprise (before authentication settings have been propagated to the Siebel Gateway Name Server), the user account name and password fields have no effect.

Gateway Name Server Authentication User Account Password

Specify the password for the account that you are using for Siebel Gateway Name Server authentication.

Gateway Name Server Host Name

Specify the host name of the computer on which the Siebel Gateway Name Server is installed. For more information, see Restrictions on Host Names for Siebel Gateway Name Server and Siebel Server.

Gateway Name Server TCP/IP Port

Specify the port number that the Siebel Gateway Name Server uses for connections from Siebel Server or other components. The default port number is 2320. Use the port number that you specified when you configured the Siebel Gateway Name Server.

Siebel Enterprise Name

Specify the name that you want for the Siebel Enterprise. For more information, see Restrictions on Names for Siebel Enterprise and Siebel Server.

Enterprise Description

(EnterpriseDesc)

Provide a short description for the Siebel Enterprise.

Primary Siebel File System

(FileSystem)

Specify the location or locations of the Siebel File System. For more information, see Creating the Siebel File System.

Database Platform

The options are:

  • Oracle Database Enterprise Edition
  • IBM DB2 UDB for Linux UNIX Windows
  • IBM DB2 UDB for z/OS
  • Microsoft SQL Server

Microsoft SQL Server Host Name

(Microsoft SQL Server only)

Microsoft SQL Server Database Name

(Microsoft SQL Server only)

Database Table Owner

(TableOwner)

(Oracle Database, DB2, or DB2 for z/OS only)

IBM DB2 Database Alias

(DB2 only)

Current IBM DB2 SQL ID / Group Name

(DB2 for z/OS only)

Oracle SQLNet Connect String

(Oracle Database only)

Siebel Database User Account Name

(For all database platforms)

Siebel Database User Account Password

(For all database platforms)

Enterprise Security Authentication Profile

The options are:

  • Database Authentication (default). Corresponds to SecAdptMode parameter value DB.
  • Lightweight Directory Access Protocol (LDAP) Authentication. Corresponds to SecAdptMode parameter value LDAP.
  • Custom Security Authentication, using the Security SDK. Corresponds to SecAdptMode parameter value CUSTOM.
  • Active Directory (ADSI) Authentication (Windows only). Corresponds to SecAdptMode parameter value ADSI.

Database authentication is enabled by default. After you configure a different security adapter, that adapter is not yet enabled for use.

If you enable a security adapter after configuring it, then manually set the parameter SecAdptMode using one of the listed values. For example, do so for an Application Object Manager component for which you are enabling a security adapter, such as the security adapter for LDAP.

NOTE:  It is strongly recommended that you keep database authentication enabled for the Siebel Enterprise. As applicable for your deployment, enable any non-database security adapter for individual servers or components only, using Server Manager.

For customers using Active Directory, it is generally recommended that you use the LDAP security adapter instead of the ADSI security adapter.

If, later in the same Configuration Wizard session, you select the option Propagate Authentication Settings to the Gateway Name Server, then the settings are also propagated for Siebel Gateway Name Server authentication. For more information, see Requirements for Siebel Gateway Name Server Authentication. For more information about all of the authentication options, see Siebel Security Guide.

Security Adapter Name (named subsystem)

In general, it is recommended that you accept the default security adapter name. The default name depends on the type of security adapter that you are configuring. Default names are as follows:

  • DBSecAdpt
  • LDAPSecAdpt
  • CUSTOMSecAdpt
  • ADSISecAdpt

If you enable a security adapter after configuring it, then manually set the parameter SecAdptName to the same name. For example, do so for an Application Object Manager component for which you are enabling a security adapter, such as the security adapter for LDAP. For more information about all of the authentication options, see Siebel Security Guide.

Security Authentication Library CRC Checksum

(CRC)

LDAP, ADSI, or custom authentication only.

NOTE:  This option does not apply to database authentication. The same is true for all of the remaining authentication settings, except those for Siebel Gateway Name Server authentication.

Directory Server Domain Name

(ServerName)

LDAP or ADSI authentication only.

LDAP Port Configuration

(Port)

LDAP authentication only. The default port numbers are 389 or 636 (secure).

Network TCP/IP Port Number

(Port)

LDAP authentication only.

Siebel Username Attribute

(UsernameAttributeType)

LDAP or ADSI authentication only.

Siebel Password Attribute

(PasswordAttributeType)

LDAP authentication only.

Credentials Attribute

(CredentialsAttributeType)

LDAP, ADSI, or custom authentication only.

LDAP Roles Attribute (optional)

(RolesAttributeType)

LDAP, ADSI, or custom authentication only.

Shared Database Account Distinguished Name

(SharedCredentialsDN)

LDAP, ADSI, or custom authentication only.

Store shared database user credentials as parameters

LDAP or ADSI authentication only.

Shared Database Account

LDAP or ADSI authentication only.

Shared Database Account Password

LDAP or ADSI authentication only.

Siebel Application Distinguished Name (DN)

(ApplicationUser)

LDAP, ADSI, or custom authentication only.

Application Password

(ApplicationPassword)

LDAP or ADSI authentication only.

Configure Web Single Sign-On (Web SSO)

(SingleSignOn)

LDAP or ADSI authentication only.

User Specification

(UserSpec)

LDAP or ADSI authentication only.

Shared Secret

(TrustToken)

LDAP or ADSI authentication only.

SSL Database Certificate File

(SslDatabase)

LDAP authentication only.

Hash User Passwords

(HashUserPwd)

LDAP, ADSI, or custom authentication only.

Hash Database Passwords

(HashDBPwd)

LDAP, ADSI, or custom authentication only.

Salt User Passwords

(SaltUserPwd)

LDAP, ADSI, or custom authentication only.

Salt Attribute

(SaltAttributeType)

LDAP, ADSI, or custom authentication only.

Security Adapter Mapped User Name

(UseAdapterUserName)

LDAP, ADSI, or custom authentication only.

Siebel User ID Attribute

(SiebelUsernameAttributeType)

LDAP, ADSI, or custom authentication only.

Base Distinguished Name (DN)

(BaseDN)

LDAP or ADSI authentication only.

Propagate Change

(PropagateChange)

LDAP or ADSI authentication only.

Propagate Authentication Settings to the Gateway Name Server

Select this option to propagate authentication settings that you made to the Siebel Gateway Name Server.

NOTE:  The first time that you specify Siebel Gateway Name Server authentication settings at the start of the task, you must select this check box. Subsequently, select this box only when you are changing existing settings.

Microsoft SQL Server Port Number

(Microsoft SQL Server only)

This option appears only when database authentication for Siebel Gateway Name Server authentication is used, and you are propagating authentication settings to the Siebel Gateway Name Server.

Tasks for Modifying Enterprise Configurations

Some items shown apply to both creating a new Siebel Enterprise and modifying an existing Siebel Enterprise.

NOTE:  For listed tasks that do not appear for the Create task, the applicable screens always display anyway.

  • Enterprise Database Connection Settings, which is listed only in the task to modify the Siebel Enterprise
  • Enterprise Network Security Encryption Type
  • Charts Server Settings
  • Data Quality Products and Connectors
  • Enterprise Security Authentication Default, which is listed only in the task to modify the Siebel Enterprise

Charts Server Host Name

(DSChartServer)

Appears only if you checked Charts Server Settings in Tasks for Modifying Enterprise Configurations. Specify the host name and the port number of the computer where you are running the Siebel Charts server. Use the format Charts_server_hostname:port_number. See Changing the Siebel Charts Server Used by Siebel Web Clients.

Chart Image Format

(DSChartImageFormat)

Appears only if you checked Charts Server Settings in Tasks for Modifying Enterprise Configurations. Choose png (the default), jpg, or gif. Accepting the default is recommended. The value must be in lower case. See Changing the Siebel Charts Server Used by Siebel Web Clients.

Siebel Data Quality Matching

Appears only if you checked Data Quality Products and Connectors in Tasks for Modifying Enterprise Configurations. Choose None or Siebel Data Quality Connector.

Security Encryption Level or Type

(Crypt and ConnType)

This setting and all of the remaining items appear only if you checked Enterprise Network Security Encryption Type in Tasks for Modifying Enterprise Configurations. Options are:

  • SISNAPI Without Encryption
  • SISNAPI Using RSA Encryption Algorithm
  • SISNAPI Using TLS 1.2
  • SISNAPI Using SSL 3.0
  • SISNAPI Using Enhanced SSL 3.0 (requires hardware proxy)
  • SISNAPI Using Microsoft Crypto Enhanced API Encryption

For more information, see Siebel Security Guide.

Certificate File Name

(CertFileName)

This item and all of the remaining items appear only if you selected one of the TLS or SSL options in Security Encryption Level or Type. For more information, see Siebel Security Guide.

Certificate Authority (CA) Certificate File Name

(CACertFileName)

For more information, see Siebel Security Guide.

Private Key File Name

(KeyFileName)

For more information, see Siebel Security Guide.

Private Key File Password

(KeyFilePassword)

For more information, see Siebel Security Guide.

Enable Peer Authentication

(PeerAuth)

For more information, see Siebel Security Guide.

Validate Peer Certificate

(PeerCertValidation)

For more information, see Siebel Security Guide.

Enter location of response file

The location of a response file to save, if you intend to later execute such a file to perform unattended configuration.
    
Siebel Installation Guide for Microsoft Windows Copyright © 2014, Oracle and/or its affiliates. All rights reserved. Legal Notices.