Table 5. Settings for Configuring a Security Profile
Setting in Siebel Management Console |
Section (Under Create Profile) |
|
Name |
Data Sources > Data Source Name |
Specify the name of the data source that will be created. |
Type |
Data Sources > Data Source Name |
Specify the type of authentication you are using. The options are:
- Database Authentication (development only)
- Lightweight Directory Access Protocol (LDAP) Authentication
- Custom Security Authentication (using Security SDK)
|
Host Name |
Data Sources > Data Source Name |
Specify the host name for the data source, such as the host name of the database server for database authentication. |
Port |
Data Sources > Data Source Name |
Specify the port number for the data source, such as the port number of the database server for database authentication. |
SQL Style of Database |
Data Sources > Data Source Name This option appears if you select Database Authentication or Custom Authentication. |
Specify the SQL style for your Siebel database. Specify one of the following:
- Oracle Database Enterprise Edition
- Microsoft SQL Server
- IBM DB2
|
Database Service Name |
Data Sources > Data Source Name This option appears if you select Database Authentication. |
The service name of Oracle Enterprise Server edition, or the database name for IBM DB2 and Microsoft SQL Server. |
Table Owner |
Data Sources > Data Source Name This option appears if you select Database Authentication. |
The table owner for the database. |
Application User Distinguished Name (DN) |
Data Sources > Data Source Name This option appears if you select LDAP or Custom Authentication. |
Specifies the user name of a record in the directory with sufficient permissions to read any user's information and do any necessary administration. |
Application Password |
Data Sources > Data Source Name This option appears if you select LDAP or Custom Authentication. |
Specifies the password for the user specified in the Application User Distinguished Name (DN) field. |
Base Distinguished Name (DN) |
Data Sources > Data Source Name This option appears if you select LDAP or Custom Authentication. |
Specifies the base distinguished name, which is the root of the tree under which users of this Siebel application are stored in the directory. |
Custom Library |
Data Sources > Data Source Name This option appears if you select Custom Authentication. |
Name of the custom security adapter implementation. |
CRC Checksum |
Data Sources > Data Source Name |
Provide the value of the checksum performed on the applicable security adapter library (DLL). This value, applicable for the Siebel Server only, ensures that each user accesses the Siebel database through the correct security adapter. If this field is empty or contains the value 0 (zero), then no checksum validation is performed. If you upgrade your version of Siebel Business Applications, then you must recalculate the checksum value and replace the value in this field. |
Credentials Attribute |
Data Sources > Data Source Name This option appears if you select LDAP or Custom Authentication. |
Specifies the attribute type that stores a database account. |
Hash Algorithm |
Data Sources > Data Source Name This option appears if you select LDAP or Custom Authentication. |
Specifies the hash algorithm to be used for password hashing. Choose one of the following:
|
Hash DB Password |
Data Sources > Data Source Name This option appears if you select LDAP or Custom Authentication. |
Specifies password hashing for database credentials passwords. |
Hash User Password |
Data Sources > Data Source Name This option appears if you select LDAP or Custom Authentication. |
Specifies password hashing for user passwords. |
Password Attribute Type |
Data Sources > Data Source Name This option appears if you select LDAP or Custom Authentication. |
Specifies the attribute type that stores a database account. |
Propagate Change |
Data Sources > Data Source Name This option appears if you select LDAP or Custom Authentication. |
Specifies whether to allow administration of the directory through the Siebel application user interface. |
Roles Attribute (optional) |
Data Sources > Data Source Name This option appears if you select LDAP or Custom Authentication. |
Specifies the attribute type for roles stored in the directory. |
Shared Database Account Distinguished Name (fully qualified domain name) |
Data Sources > Data Source Name This option appears if you select LDAP or Custom Authentication. |
Specifies the absolute path of an object in the directory that has the shared database account for the application. |
Shared DB User Name |
Data Sources > Data Source Name This option appears if you select LDAP or Custom Authentication. |
Specifies the user name to connect to the Siebel database. |
Shared DB Password |
Data Sources > Data Source Name This option appears if you select LDAP or Custom Authentication. |
Specifies the password for the shared database user name. |
Security Adapter Mapped User Name |
Data Sources > Data Source Name This option appears if you select LDAP or Custom Authentication. |
Specifies that, when the user key passed to the security adapter is not the Siebel user name, the security adapter retrieves the user name for authenticated users from an attribute defined by the parameter SiebelUsernameAttributeType. |
Siebel User Name Attribute |
Data Sources > Data Source Name This option appears if you select Security Adapter Mapped User Name for LDAP or Custom Authentication. |
Specifies the attribute from which the security adapter retrieves an authenticated user's Siebel user ID. |
SSL |
Data Sources > Data Source Name This option appears if you select LDAP Authentication. |
Specifies to enable Secure Sockets Layer for socket connections to the host. |
Wallet Password |
Data Sources > Data Source Name This option appears if you select SSL for LDAP or Custom Authentication. |
Specifies the password to open the wallet that contains a certificate for the certification authority used by the directory server. |
Configure Web Single Sign-On (Web SSO) |
Data Sources > Data Source Name This option appears if you select LDAP or Custom Authentication. |
Specifies that the security adapter uses Web Single Sign-On (Web SSO) authentication rather than security adapter authentication. |
Trust Token |
Data Sources > Data Source Name This option appears if you select Configure Web Single Sign-On for LDAP or Custom Authentication. |
Specifies a password to be used with Web Single Sign-On (Web SSO) authentication. |
Salt Attribute Type |
Data Sources > Data Source Name This option appears if you select LDAP or Custom Authentication. |
Specifies the attribute that stores the salt value if you are using password salting. |
Salt User Password |
Data Sources > Data Source Name This option appears if you select LDAP or Custom Authentication. |
Specifies whether to add salt values to user passwords before they are hashed. |
User Name Attribute Type |
Data Sources > Data Source Name This option appears if you select LDAP or Custom Authentication. |
Specifies the attribute type under which the user's login name is stored in the directory. |
Enterprise Security Authentication Profile |
Basic Information |
Select one of the following options for your enterprise security authentication:
- Database Authentication (development only)
- Lightweight Directory Access Protocol (LDAP) Authentication
- Custom Security Authentication (using Security SDK)
NOTE: You must create the security profile before you configure the Siebel Enterprise.
|
Security Adapter Name (named subsystem) |
Basic Information |
Select the security adapter name. |
Database Security Adapter Data Source |
Basic Information This option appears if you select Database Authentication. |
Select the security adapter data source. |
Database Security Adapter Propagate Changes |
Basic Information This option appears if you select Database Authentication. |
Specify whether to propagate changes for the security adapter. |
Authorization Roles (comma-separated) |
Basic Information |
Specify one or more authorization roles for accessing the Siebel Gateway. Default value: Siebel Administrator (which is provided by Oracle and cannot be changed). For more information, see Requirements for Siebel Gateway Authentication. |
User Name |
Testing |
Specify the user name for testing authentication under the specified authentication system. |
Password |
Testing |
Specify the password for the user account used for testing. |
JRE Management Configuration File |
|
Specify the location of the JRE management configuration file for Oracle Coherence. This option is part of Siebel Cache Server Configuration. The default file location is SIEBSRVR_ROOT \jre\lib\management\management.properties . |
Autostart Gateway System Service |
|
Specify whether to start the Siebel Gateway system service automatically when the operating system starts. |