Siebel CRM Siebel Security Guide Siebel Innovation Pack 2015 E24814-01 |
|
Previous |
Next |
View PDF |
You can install Oracle LDAP Client software using the Siebel Enterprise Server installer or without using the Siebel Enterprise Server installer. For more information, see the following topics:
"Installing Oracle LDAP Client Software Using Siebel Enterprise Server Installer"
For Siebel Innovation Pack 2015 or later, the Oracle LDAP Client is integrated into the Siebel Enterprise Server task for installing the Siebel Server or Siebel Gateway Name Server. The Oracle LDAP Client is available for customers that use the LDAP protocol for authentication.
Note the following:
The Oracle LDAP Client is installed for new installations only. It is not installed for migration installations from a prior 8.1.1.x or 8.2.2.x release.
Install the Oracle LDAP Client from the Siebel Enterprise Server installer only for non-Oracle Database deployments.
For Oracle Database deployments and for migration installations of Siebel Enterprise Server, you can use an existing or external Oracle LDAP Client for LDAP connectivity provided that the client is version 11.2.0.3 and you also install the critical patches, applicable to your operating system, for LDAP to function correctly. For more information about the patches applicable to your operating system that you must install, see the following topics:
If your existing or external Oracle LDAP Client is lower than version 11.2.0.3, then upgrade the client, which is included with Siebel CRM version 15.0, to version 11.2.0.3.
This task is a step in "Process of Installing and Configuring Oracle LDAP Client Software Without Using Siebel Enterprise Server Installer".
For non-Oracle Database deployments and for deployments with Oracle Database:
You must install the Oracle LDAP Client if you implement LDAP security adapter authentication. Oracle Wallet Manager, installed by default with the Oracle LDAP Client, allows Siebel Business Applications to communicate with supported LDAP directory servers over TLS.
The Oracle LDAP Client allows Siebel Business Applications to authenticate against supported LDAP directory servers when used with the LDAP security adapter.
Consider the following requirements for the Oracle LDAP Client installation in a Siebel environment:
The Oracle LDAP Client must be installed on each Siebel Server or Siebel Gateway Name Server computer for which LDAP authentication is to be supported using the LDAP security adapter. For deployments with Oracle Database, the Oracle LDAP Client software can be installed either before or after you install the Siebel Server.
Oracle Wallet Manager, which is required if you are supporting TLS, is an application you use to generate wallets. Wallets are containers that store authentication and signing credentials, such as trusted certificates, which are required for Siebel Business Applications to communicate with LDAP directory servers.
For deployments with Oracle Database, Siebel Developer Web Client deployments only support database authentication.
For more information about the requirements for installing the Oracle LDAP Client, see Siebel Installation Guide for the operating system you are using.
The Oracle LDAP Client software is available from the Siebel installation image directory and placed under the directory for the Siebel Enterprise Server installer software, provided the Oracle LDAP Client option was selected when the Siebel installation image was created. That is, if you specified Siebel Enterprise Server to be part of the image. For information about creating a Siebel installation image, see Siebel Installation Guide for the operating system you are using.
Note: If you are using LDAP security adapter authentication, you must install the Oracle LDAP Client provided with the current Siebel Innovation Pack, even if you are using Siebel Business Applications with an Oracle Database and have previously installed the Oracle LDAP Client. Siebel Innovation Packs provide the most recent version of the Oracle LDAP Client, which is required for LDAP authentication. Be aware that only one Oracle LDAP Client can be used in a Siebel CRM implementation, so if you install the Oracle LDAP Client provided with a Siebel Innovation Pack to enable LDAP authentication, you must also use this client to connect to your Oracle Database. |
Install the Oracle LDAP Client from the Siebel Enterprise Server installer only for non-Oracle Database deployments and if there is no external or existing Oracle LDAP Client installed on your machine.
Note: If you install the Oracle LDAP Client with a Siebel Enterprise Server that connects to an Oracle Database, then this installation resets the existing Oracle Home defined for the Oracle LDAP Client to the new Oracle LDAP Client. Consequently, Siebel Business Applications will be unable to connect to the database. |
When installing the Oracle LDAP Client through the Siebel Enterprise Server installer, you must:
Select to install any combination of the following server components:
Siebel Gateway Name Server or Siebel Server
Siebel Gateway Name Server and Siebel Server
Select to install the Lightweight Directory Access Protocol (LDAP) Client
For more information about installing Oracle LDAP software using the Siebel Enterprise Server installer, see Siebel Installation Guide for the operating system you are using.
After installing the Siebel Enterprise Server with Oracle LDAP Client, you must perform user authentication through the LDAP security adapter. You can encrypt traffic using TLS when using the Oracle LDAP Client provided that the critical patches, applicable to your operating system, are also installed. All critical patches are automatically installed when you install the Oracle LDAP Client using the Siebel Enterprise Server installer.
Note: For more information about the support for TLS encryption provided by Siebel CRM and the critical patches, see 1944467.1 (Article ID) on My Oracle Support. The patch readme file contains all platform-specific installation instructions. |