Bookshelf Home | Contents | Index | PDF     

Siebel Installation Guide for Microsoft Windows > Requirements for Installing and Configuring Siebel Business Applications > Requirements for Installing and Configuring the Siebel Application Interface >

Requirements for Configuring Anonymous Users for the Siebel Application Interface

As noted in Creating a Siebel Application Interface Profile, when you configure profiles for Siebel Business Applications, using Siebel Management Console, you are prompted for user names and passwords of Siebel users who will serve as anonymous users for Siebel Business Applications. Provide the anonymous user credentials, as appropriate for your deployment.

This topic is part of Requirements for Installing and Configuring the Siebel Application Interface.

The anonymous user has functions that include the following:

  • Starting the anonymous session that displays the login page to an end user for an application. This function applies to both employee applications and customer applications.
  • Allowing anonymous browsing and navigation within the application. In this case, usually applicable to customer applications only, the anonymous user must have access to any public view in the application.

You can define as many different anonymous users as you require for your deployment, each with the appropriate permissions, according to your needs. During Siebel software configuration, using Siebel Management Console, you can specify an anonymous user name and associated password when you:

  • Configure the Siebel Server profile, as described in Configuring the Siebel Server.
  • Configure the Siebel Application Interface profile, as described in Configuring the Siebel Application Interface:
    • An anonymous user that will serve as a global default for all applications.
    • An anonymous user that will override the default for individual applications.
    • An anonymous user that will be used for REST inbound authentication. The password for this anonymous user is used for REST requests that are sent without a user name and password.

If, after performing the initial configuration, you change the password for the database account that you are using for an anonymous user, or decide to specify a different anonymous user for a particular application, then you can modify the configuration to provide the updated password or to specify a different anonymous user for this application.

Record the credentials for each anonymous user in your deployment in the worksheet provided in Siebel Deployment Planning Worksheet.

Note the following guidelines and requirements:

  • For more information about configuring anonymous users, see Siebel Security Guide.
  • All anonymous users for your deployment must be defined in the Siebel database and must be defined as Siebel users. Strong passwords are highly recommended for anonymous user accounts. Anonymous users should have limited access rights, no more than is necessary for the usage context. The Siebel Management Console does not allow the Siebel administrator user, SADMIN, to be specified as an anonymous user.
  • You can create new database users that will serve as anonymous users through editing the grantusr.sql script. You review, modify, and execute this script before you install the Siebel database and configure the Siebel deployment. GUESTCST is an example of an anonymous user account that you would create in the grantusr.sql script. After you install the Siebel database and configure the Siebel deployment, then you still also add corresponding Siebel users. For more information, see Creating Table Owner and Administrator Accounts.
  • The anonymous user for employee applications must be defined as an employee and must be associated with an appropriate position and responsibility.
  • If your Siebel application does not use functionality that requires anonymous browsing, then you can disable access by the anonymous user by setting the AllowAnonUsers parameter for the Application Object Manager component to False. If anonymous browsing must be enabled, then you set AllowAnonUsers to True.
  • Anonymous users are used by applications that allow anonymous browsing by unregistered users, that display a Siebel login page, that support self-registration, or that support external authentication such as LDAP. The anonymous user and password are used for serving the login page.
  • To use nondefault or application-specific anonymous users, you must specify the anonymous user and passwords for each application, in the Siebel Application Interface profile.
Related Books

Siebel Security Guide

Siebel Security Hardening Guide

Siebel System Administration Guide

Deploying Siebel Open UI

Related Topics

Creating a Siebel Application Interface Profile

Creating Table Owner and Administrator Accounts

      
Siebel Installation Guide for Microsoft Windows Copyright © 2017, Oracle and/or its affiliates. All rights reserved. Legal Notices.