Siebel 2018: Configuring a Security Profile

When you configure the Siebel Gateway, you configure the first Security profile. You can use the same Security profile for Siebel Enterprise authentication, or create another Security profile for the Siebel Enterprise. To create another Security profile, use the procedure that follows. This task is part of Configuring the Siebel Gateway and Security.

This task is required for new installations. It is not required for migration installations of Siebel Enterprise Server from a previous release, because the migration installation task migrates the prior configuration. However, you might choose to create a new Security profile.

Related Topics

Configuration Settings for a Security Profile

Table 12 describes the settings that are requested in the Siebel Management Console for configuring a new Security profile or modifying an existing Security profile. Required fields display an asterisk (*) next to the field label. For most of the options, pointing to the option displays tooltip text that provides a brief description of the field.

Table 12. Settings for Configuring a Security Profile
Setting in Siebel Management Console	Section (Under Create Profile)	Comment or Description
Name	Data Sources > Data Source Name	Specify the name of the data source that will be created.
Type	Data Sources > Data Source Name	Specify the type of authentication you are using. The options are: Database Authentication (development only) Lightweight Directory Access Protocol (LDAP) Authentication Custom Security Authentication (using Security SDK)
Host Name	Data Sources > Data Source Name This option appears if you selected Database Authentication or LDAP Authentication.	Specify the host name for the data source, such as the host name of the database server for database authentication.
Port	Data Sources > Data Source Name This option appears if you selected Database Authentication or LDAP Authentication.	Specify the port number for the data source, such as the port number of the database server for database authentication.
SQL Style of Database	Data Sources > Data Source Name This option appears if you selected Database Authentication or Custom Authentication.	Specify the SQL style for your Siebel database. Specify one of the following: Oracle Database Enterprise Edition Microsoft SQL Server IBM DB2
Database Service Name	Data Sources > Data Source Name This option appears if you selected Database Authentication.	The service name of Oracle Enterprise Server edition, or the database name for IBM DB2 and Microsoft SQL Server.
Table Owner	Data Sources > Data Source Name This option appears if you selected Database Authentication.	The table owner for the database.
Application User Distinguished Name (DN)	Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication.	Specifies the user name of a record in the directory with sufficient permissions to read any user's information and do any necessary administration.
Application Password	Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication.	Specifies the password for the user specified in the Application User Distinguished Name (DN) field.
Base Distinguished Name (DN)	Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication.	Specifies the base distinguished name, which is the root of the tree under which users of this Siebel application are stored in the directory.
Custom Library	Data Sources > Data Source Name This option appears if you selected Custom Authentication.	Name of the custom security adapter implementation.
CRC Checksum	Data Sources > Data Source Name	Provide the value of the checksum performed on the applicable security adapter library (DLL). This value, applicable for the Siebel Server only, ensures that each user accesses the Siebel database through the correct security adapter. If this field is empty or contains the value 0 (zero), then no checksum validation is performed. If you upgrade your version of Siebel CRM, then you must recalculate the checksum value and replace the value in this field.
Credentials Attribute	Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication.	Specifies the attribute type that stores a database account.
Hash DB Password	Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication.	Specifies password hashing for database credentials passwords.
Hash User Password	Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication.	Specifies password hashing for user passwords.
Hash Algorithm	Data Sources > Data Source Name This option appears if you selected Hash DB Password or Hash User Password.	Specifies the hash algorithm to be used for password hashing. Choose one of the following: SHA2 SHA1
Password Attribute Type	Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication.	Specifies the attribute type that stores a database account.
Propagate Change	Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication.	Specifies whether to allow administration of the directory through the Siebel application user interface.
Roles Attribute (optional)	Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication.	Specifies the attribute type for roles stored in the directory.
Shared Database Account Distinguished Name (fully qualified domain name)	Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication.	Specifies the absolute path of an object in the directory that has the shared database account for the application.
Shared DB User Name	Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication.	Specifies the user name to connect to the Siebel database.
Shared DB Password	Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication.	Specifies the password for the shared database user name.
Security Adapter Mapped User Name	Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication.	Specifies that, when the user key passed to the security adapter is not the Siebel user name, the security adapter retrieves the user name for authenticated users from an attribute defined by the parameter SiebelUsernameAttributeType.
Siebel User Name Attribute	Data Sources > Data Source Name This option appears if you selected Security Adapter Mapped User Name for LDAP or Custom Authentication.	Specifies the attribute from which the security adapter retrieves an authenticated user's Siebel user ID.
SSL	Data Sources > Data Source Name This option appears if you selected LDAP Authentication.	Specifies to enable Secure Sockets Layer for socket connections to the host.
Wallet Password	Data Sources > Data Source Name This option appears if you selected SSL for LDAP or Custom Authentication.	Specifies the password to open the wallet that contains a certificate for the certification authority used by the directory server.
Configure Web Single Sign-On (Web SSO)	Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication.	Specifies that the security adapter uses Web Single Sign-On (Web SSO) authentication rather than security adapter authentication.
Trust Token	Data Sources > Data Source Name This option appears if you selected Configure Web Single Sign-On for LDAP or Custom Authentication.	Specifies a password to be used with Web Single Sign-On (Web SSO) authentication.
Salt Attribute Type	Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication.	Specifies the attribute that stores the salt value if you are using password salting.
Salt User Password	Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication.	Specifies whether to add salt values to user passwords before they are hashed.
User Name Attribute Type	Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication.	Specifies the attribute type under which the user's login name is stored in the directory.
Enterprise Security Authentication Profile	Basic Information	Select one of the following options for your enterprise security authentication: Database Authentication (development only) Lightweight Directory Access Protocol (LDAP) Authentication Custom Security Authentication (using Security SDK) NOTE: You must create the security profile before you configure the Siebel Enterprise.
Security Adapter Name (named subsystem)	Basic Information	Select the security adapter name.
Database Security Adapter Data Source	Basic Information This option appears if you selected Database Authentication.	Select the security adapter data source.
Database Security Adapter Propagate Changes	Basic Information This option appears if you selected Database Authentication.	Specify whether to propagate changes for the security adapter.
Authorization Roles (comma-separated)	Basic Information	Specify one or more authorization roles for accessing the Siebel Gateway. Default value: Siebel Administrator (which is provided by Oracle and cannot be changed). For more information, see Requirements for Siebel Gateway Authentication.
User Name	Testing	Specify the user name for testing authentication under the specified authentication system.
Password	Testing	Specify the password for the user account used for testing.

Siebel Installation Guide for UNIX		Copyright © 2018, Oracle and/or its affiliates. All rights reserved. Legal Notices.