| Siebel CRM Siebel Security Guide Siebel Innovation Pack 2015 E24814-01 |
|
 Previous |
 Next |
View PDF |
| Siebel CRM Siebel Security Guide Siebel Innovation Pack 2015 E24814-01 |
|
Previous |
Next |
View PDF |
To implement anonymous browsing so that Siebel views are accessible to unregistered users, you must perform the following tasks:
For Siebel Business Applications for which anonymous browsing is implemented by default, confirm that these tasks have been completed.
This topic describes the modifications you might have to make to the anonymous user record when you implement anonymous browsing. For additional information on the anonymous user, see "Configuring the Anonymous User".
This task is a step in "Process of Implementing Anonymous Browsing".
The anonymous user is a record in the Siebel database and, if you implement external user authentication, a corresponding record in the external directory of users. The anonymous user is a component in user authentication, anonymous browsing, and self-registration. For applications that allow anonymous browsing, the anonymous user provides visibility of the pages for which you allow anonymous browsing.
Before implementing anonymous browsing, check that:
An anonymous user record exists in your Siebel database and external directory.
In general, you will have set up your user authentication architecture before configuring an application for user access so the anonymous user will already exist in your Siebel database and in your directory. For information, see "Configuring the Anonymous User".
The anonymous user record is assigned appropriate responsibilities.
The responsibility that is assigned to a user record in the database contains a list of views to which the user has access. You must confirm that the anonymous user used for your Siebel Business Application includes an appropriate responsibility so that unregistered users can see the views you intend them to see.
If you choose to use a seed anonymous user in your authentication setup, then verify that its seed responsibility includes the views you want to provide for anonymous browsing. For example, if you use the GUESTCST seed user for a Siebel customer application, then verify that its responsibility, Web Anonymous User, includes the required views.
If the responsibility does not include your required views, then do one of the following:
Create one or more additional responsibilities that include missing views, and then add these responsibilities to the existing seed responsibility in the anonymous user's Responsibility field. The user has access to all the views in all the assigned responsibilities. For information about creating a responsibility or adding views to a responsibility, see Chapter 9, "Configuring Access Control."
Copy the seed responsibility record, add missing views to the copy, and replace the responsibility in the anonymous user record with the modified responsibility.
|
Note: You cannot directly modify a seed responsibility. |
Related Topic
This topic describes the configuration parameters you must set to enable anonymous browsing.
This task is a step in "Process of Implementing Anonymous Browsing".
Perform the steps in the following procedure to implement anonymous browsing.
To set configuration parameters for anonymous browsing
For a Siebel Web Client deployment, set the AllowAnonUsers parameter to TRUE for the applicable Application Object Manager component as follows:
Navigate to the Administration - Server Configuration screen, then the Servers view.
In the Siebel Servers applet, select the relevant Siebel Server, then click the Components tab.
Select the applicable component, for example, Call Center Object Manager, then click the Parameters tab.
In the Component Parameters applet, locate the AllowAnonUsers parameter and set the Value to True.
If this parameter is FALSE, then unregistered users are not allowed access to the Siebel application.
In the eapps.cfg file, set the following parameters:
AnonUserName
This is the user name for the anonymous user. It is stored in the directory and also in the Siebel database. The anonymous user provides binding between the directory and the Application Object Manager to allow a Siebel application home page to display to a user who has not logged in. Similarly, this anonymous user supplies a login so the user can see other pages for which you allow anonymous browsing.
|
Caution: Specify the name of a restricted user for AnonUserName. Do not specify SADMIN as the AnonUserName; doing so allows anonymous users to access every part of the Siebel system. |
AnonPassword
This is the authenticated password that is paired with AnonUserName.
For information about setting parameter values in the eapps.cfg file, see "About Parameters in the eapps.cfg File".
This topic describes how to configure views for anonymous browsing.
This task is a step in "Process of Implementing Anonymous Browsing".
When a view is included in the responsibility for the anonymous user, the view is still not accessible to unregistered users if the view is designated for explicit login. A view that is designated for explicit login requires the viewer to be a registered user who has been authenticated.
The following procedure outlines the general steps you must perform in Siebel Tools to allow a view to be accessible to anonymous users. For detailed information about modifying view properties in Siebel Tools, see Configuring Siebel Business Applications.
To remove the explicit login requirement for a view
Open Siebel Tools.
Select Tools, and then Lock Project.
In Object Explorer, select the View object type.
The Views list appears.
Select a view.
For each view, set the Explicit Login property to FALSE to allow the view to be available for anonymous browsing.
Set the Explicit Login property to TRUE if only registered users are to have access to the view.
Recompile the Siebel repository file, and unlock the project.
