Configuration Settings for a Security Profile
The following table describes the settings that are requested in the Siebel Management Console for configuring a new Security profile or modifying an existing Security profile. Required fields display an asterisk (*) next to the field label. For most of the options, pointing to the option displays tooltip text that provides a brief description of the field. This topic is part of Configuring the Siebel Gateway and Security.
| Setting in Siebel Management Console | Section (Under Create Profile) | Comment or Description |
|---|---|---|
Name |
Data Sources > Data Source Name |
Specify the name of the data source that will be created. |
Type |
Data Sources > Data Source Name |
Specify the type of authentication you are using. The options are:
|
Host Name |
Data Sources > Data Source Name This option appears if you selected Database Authentication or LDAP Authentication. |
Specify the host name for the data source, such as the host name of the database server for database authentication. |
Port |
Data Sources > Data Source Name This option appears if you selected Database Authentication or LDAP Authentication. |
Specify the port number for the data source, such as the port number of the database server for database authentication. |
SQL Style of Database |
Data Sources > Data Source Name This option appears if you selected Database Authentication or Custom Authentication. |
Specify the SQL style for your Siebel database. Specify one of the following:
|
Database Service Name |
Data Sources > Data Source Name This option appears if you selected Database Authentication. |
The service name of Oracle Enterprise Server edition, or the database name for IBM DB2 and Microsoft SQL Server. |
Table Owner |
Data Sources > Data Source Name This option appears if you selected Database Authentication. |
The table owner for the database. |
Application User Distinguished Name (DN) |
Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication. |
Specifies the user name of a record in the directory with sufficient permissions to read any user’s information and do any necessary administration. |
Application Password |
Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication. |
Specifies the password for the user specified in the Application User Distinguished Name (DN) field. |
Base Distinguished Name (DN) |
Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication. |
Specifies the base distinguished name, which is the root of the tree under which users of this Siebel application are stored in the directory. |
Custom Library |
Data Sources > Data Source Name This option appears if you selected Custom Authentication. |
Name of the custom security adapter implementation. |
CRC Checksum |
Data Sources > Data Source Name |
Provide the value of the checksum performed on the applicable security adapter library (DLL). This value, applicable for the Siebel Server only, ensures that each user accesses the Siebel database through the correct security adapter. If this field is empty or contains the value 0 (zero), then no checksum validation is performed. If you upgrade your version of Siebel CRM, then you must recalculate the checksum value and replace the value in this field. |
Credentials Attribute |
Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication. |
Specifies the attribute type that stores a database account. |
Hash DB Password |
Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication. |
Specifies password hashing for database credentials passwords. |
Hash User Password |
Data Sources > Data Source Name This option appears if you selected Database Authentication, LDAP, or Custom Authentication. |
Specifies password hashing for user passwords. |
Hash Algorithm |
Data Sources > Data Source Name This option appears if you selected Hash DB Password or Hash User Password. |
Specifies the hash algorithm to be used for password hashing. Choose one of the following:
|
Password Attribute Type |
Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication. |
Specifies the attribute type that stores a database account. |
Propagate Change |
Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication. |
Specifies whether to allow administration of the directory through the Siebel application user interface. |
Roles Attribute (optional) |
Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication. |
Specifies the attribute type for roles stored in the directory. |
Shared Database Account Distinguished Name (fully qualified domain name) |
Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication. |
Specifies the absolute path of an object in the directory that has the shared database account for the application. |
Shared DB User Name |
Data Sources > Data Source Name This option appears if you selected Configure Web Single-Sign-On for Database Authentication Advanced, LDAP, or Custom Authentication. |
Specifies the user name to connect to the Siebel database. |
Shared DB Password |
Data Sources > Data Source Name This option appears if you selected Configure Web Single-Sign-On for Database Authentication Advanced, LDAP, or Custom Authentication. |
Specifies the password for the shared database user name. |
Security Adapter Mapped User Name |
Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication. |
Specifies that, when the user key passed to the security adapter is not the Siebel user name, the security adapter retrieves the user name for authenticated users from an attribute defined by the parameter SiebelUsernameAttributeType. |
Siebel User Name Attribute |
Data Sources > Data Source Name This option appears if you selected Security Adapter Mapped User Name for LDAP or Custom Authentication. |
Specifies the attribute from which the security adapter retrieves an authenticated user’s Siebel user ID. |
SSL |
Data Sources > Data Source Name This option appears if you selected LDAP Authentication. |
Specifies to enable Secure Sockets Layer for socket connections to the host. |
Wallet Password |
Data Sources > Data Source Name This option appears if you selected SSL for LDAP or Custom Authentication. |
Specifies the password to open the wallet that contains a certificate for the certification authority used by the directory server. |
Configure Web Single Sign-On (Web SSO) |
Data Sources > Data Source Name This option appears if you selected Database Authentication Advanced, LDAP, or Custom Authentication. |
Specifies that the security adapter uses Web Single Sign-On (Web SSO) authentication rather than security adapter authentication. |
Trust Token |
Data Sources > Data Source Name This option appears if you selected Configure Web Single-Sign-On for Database Authentication Advanced, LDAP, or Custom Authentication. |
Specifies a password to be used with Web Single Sign-On (Web SSO) authentication. |
Salt Attribute Type |
Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication. |
Specifies the attribute that stores the salt value if you are using password salting. |
Salt User Password |
Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication. |
Specifies whether to add salt values to user passwords before they are hashed. |
User Name Attribute Type |
Data Sources > Data Source Name This option appears if you selected LDAP or Custom Authentication. |
Specifies the attribute type under which the user’s login name is stored in the directory. |
Enterprise Security Authentication Profile |
Basic Information |
Select one of the following options for your enterprise security authentication:
Note: You must create the security profile before you configure
the Siebel Enterprise. |
Security Adapter Name (named subsystem) |
Basic Information |
Select the security adapter name.
|
Database Security Adapter Data Source |
Basic Information This option appears if you selected Database Authentication. |
Select the security adapter data source. |
Database Security Adapter Propagate Changes |
Basic Information This option appears if you selected Database Authentication. |
Specify whether to propagate changes for the security adapter. |
Authorization Roles (comma-separated) |
Basic Information |
Specify one or more authorization roles for accessing the Siebel Gateway. Default value: Siebel Administrator (which is provided by Oracle and cannot be changed). For more information, see Requirements for Siebel Gateway Authentication. |
User Name |
Testing |
Specify the user name for testing authentication under the specified authentication system. |
Password |
Testing |
Specify the password for the user account used for testing. |
|
Connection String |
Data Sources > Data Source Name This option appears if you selected Database Authentication Advanced. |
Specify the connection string for the Siebel database. For more information, see the information about configuring Web Single Sign-On with database authentication in Siebel Security Guide. |