Industry Standards for Security

Siebel CRM adheres to common security standards to facilitate the integration of its applications into the customer environment. Siebel CRM is designed so that customers can choose a security infrastructure that best suits their specific business needs.

Supported standards include:

  • Lightweight Directory Access Protocol (LDAP). Siebel CRM provides preconfigured integration with LDAP for user authentication purposes. For more information, see Security Adapters for LDAP Authentication and Security Adapter Authentication.

  • Communications encryption. Siebel CRM supports the use of Transport Layer Security (TLS) encryption and authentication for communications encryption.

    You can use TLS to protect communications between the following:

    • Siebel CRM components, that is, Siebel Servers and Web servers.

    • Siebel Web servers and Siebel Web Clients, if support for the protocol is provided by the Web server. The use of TLS for Web server and Siebel Web Client communications is transparent to Siebel CRM.

    • Siebel Servers and Microsoft Exchange Server email servers.

    For more information on configuring TLS, see the information in the following table.

    Information Type

    Topic

    Configuring TLS for communication between Siebel Web clients and Siebel Application Interface.

    About the Siebel Web Client and Using HTTPS

    Configuring TLS for communication between Siebel components.

    Process of Configuring Secure Communications

    Using TLS to secure user login credentials

    Implementing Secure Login

    Using TLS to secure communications between Siebel Servers and directory servers.

    Configuring Secure Communications for Security Adapters

  • RSA SHA-1 password hashing. Siebel user passwords can be hashed using the SHA-1 algorithm. For more information, see About Password Hashing.

    Note: The SHA-1 hashing algorithm is the only algorithm supported for password hashing in Siebel Enterprise. SHA-2 must not be used for any participating node, since the enterprise supports only SHA-1. In addition, the Siebel Gateway security profile does not support SiebelHash (the Siebel proprietary algorithm) and so must not be used anywhere in the enterprise.
  • AES. Siebel data can be encrypted using Advanced Encryption Standard (AES). Multiple key lengths are supported for AES. For more information, see About Data Encryption.