Siebel CRM Siebel Security Guide Siebel Innovation Pack 2016, Rev. A E24814-01 |
|
Previous |
Next |
View PDF |
The purpose of the Oracle API Gateway in the SSO authentication process is to act as the Assertion Consumer Service. Oracle API Gateway validates the SAML token generated by the ID provider. All requests that are targeted to Siebel REST/SOAP must point to the Oracle API Gateway. The Siebel SOAP/REST end point is mapped to the Oracle API Gateway end point and vice versa. Two-way TSL (Transport Layer Security) must be configured between Oracle API Gateway and Siebel REST as shown in Figure 6-7.
Note: For information about using OAuth with Siebel REST, see Siebel REST API Guide. |