About the Siebel Web Client and Using HTTPS

Siebel Application Interface uses an HTTP port with a redirection port set to always use HTTPS. As a result, all access to HTTP will redirect to HTTPS.

It is mandatory to deploy Siebel with a reverse proxy so that the Siebel Application Interface port will not be exposed. If SSL is terminated at reverse proxy level, then you must configure Siebel Application Interface for HTTP.

SES containers require an HTTP port for Siebel Server to communicate with SES to route the JBS (64-bit Java business service) and outbound requests via SES; here, Siebel Server communicates with the SES container using localhost and HTTP port. All outbound communications in non-Windows environments happen via the SES container.

// Non-Windows
Sieb Server -> SES Container(HTTP) -> external(HTTPS)

// Windows
Sieb Server -> external (HTTPS)

Siebel Web Client is configured for HTTPS by the Siebel installer. Certificate and certificate store creation is a prerequisite for the Siebel installer to pick and use during HTTPS configuration. For more information, see the following:

• Certificate Requirements for Communications

• About Generating Keystore and Truststore Files

• Siebel Installation Guide