1. Integration Platform Technologies: Siebel Enterprise Application Integration Guide
  2. About WS-Security UserName Token Profile Support

About WS-Security UserName Token Profile Support

Siebel CRM supports the WS-Security UserName token mechanism, which allows for the sending and receiving of user credentials in a standards-compliant manner. The UserName token is a mechanism for providing credentials to a Web service where the credentials consist of the UserName and Password. The password must be passed in clear text. The UserName token mechanism provides a Web service with the ability to operate without having the username and password in its URL or having to pass a session cookie with the HTTP request.

Note: Using WS-Security is optional. If it is critical that the password not be provided in clear text, then use HTTPS.

The following is an example of a UserName token showing the username and password:

<wsse:Security xmlns:wsse="http://schemas.xmlsoap.org/ws/2002/07/secext">
		<wsse:UsernameToken xmlns:wsu="http://schemas.xmlsoap.org/ws/2002/07/utility">
			<wsse:Username>WKANDINSKY</wsse:Username> 
			<wsse:Password Type="wsse:PasswordText">AbstractArt123</wsse:Password>
		</wsse:UsernameToken>
</wsse:Security>
Note: If you are using Web single sign-on (SSO), then use the Siebel trust token value in wsse:Password instead of the password.