About Securing the Network Infrastructure
Where and how network computing resources reside, as well as how they work in connection with the Internet and other computers on the local network, can have a significant impact on network security. This topic describes the network components to consider in securing your Siebel CRM deployment. You must consider the physical layout of the network components and the network authentication measures required.
The following figure shows the basic components included in Oracle’s Siebel CRM network:
The components include: Siebel Server, Siebel File System, Siebel Database (storing user data and repository information), Siebel Gateway, Siebel Application Interface, Web server, Internet, Web Clients
Access to the devices that host Siebel CRM must be protected. If these devices are compromised, then the security of all applications on the computer is at risk. Utilities that provide computer-level security, for example, by enforcing computer passwords, can be used and are transparent to Siebel CRM.
Siebel CRM supports and encourages the deployment of firewalls throughout the enterprise as well as reverse proxy servers, Network Address Translation devices, and load balancers to secure the application from attack.
The architecture of Siebel CRM also takes advantage of high-availability technologies, such as Microsoft Cluster Services, which spread the workload across multiple computers allowing them to function as one. High-availability technologies address the need for failover and disaster-recovery management.
The following topics provide recommendations for deploying network components in securing your Siebel CRM infrastructure: