Virtual Directory Services and Directory Synchronization May 13 th, 2008 Bill Claycomb Computer Systems Analyst Infrastructure Computing Systems Department.

Slides:



Advertisements
Similar presentations
Conclusion Kenneth Moreland Sandia National Laboratories Sandia is a multiprogram laboratory operated by Sandia Corporation, a Lockheed Martin Company,
Advertisements

Digital Certificate Operation in a Complex Environment Matthew J. Dovey Oxford University Computing Services.
Agenda 2 factor authentication Smart cards Virtual smart cards FIM CM
DIGIDOC A web based tool to Manage Documents. System Overview DigiDoc is a web-based customizable, integrated solution for Business Process Management.
Meganet Corporation VME Office Meganet Corporation Meganet Corporation is a leading worldwide provider of data security to Governments, Military,
Extern name server - translates addresses of s messages - enables users to use aliases - … ID cards system - controls entrance to buildings,
Sandia is a multiprogram laboratory operated by Sandia Corporation, a Lockheed Martin Company, for the United States Department of Energy’s National Nuclear.
Extending ForeFront beyond the limit TMGUAG ISAIAG AG Security Suite.
World Class Financial Reporting with FRx Report Writer Elisa R. Vick
Sandia National Laboratories is a multi-program laboratory managed and operated by Sandia Corporation, a wholly owned subsidiary of Lockheed Martin Corporation,
Sandia is a multiprogram laboratory operated by Sandia Corporation, a Lockheed Martin Company, for the United States Department of Energy’s National Nuclear.
Tom Sheridan IT Director Gas Technology Institute (GTI)
Page 1 of 29 Net-Scale Technologies, Inc. Network Based Personal Information and Messaging Services Urs Muller Beat Flepp
Sandia is a multiprogram laboratory operated by Sandia Corporation, a Lockheed Martin Company, for the United States Department of Energy’s National Nuclear.
Desktop Computing Strategic Project Sandia National Labs May 2, 2009 Jeremy Allison Andy Ambabo James Mcdonald Sandia is a multiprogram laboratory operated.
Directory services in Nextra - experiences and future plans Kari Marvik, Nextra AS
Software Asset Management at Sandia National Laboratories NLIT Summit 2009 June 2, 2009 Ramona K. Gallegos Programmer/Analyst Andrew H. Steele Programmer/Analyst.
70-294: MCSE Guide to Microsoft Windows Server 2003 Active Directory, Enhanced Chapter 1: Introduction to Active Directory.
Virtual Directories: Attack Models and Prevention June 2 nd, 2009 Bill Claycomb Systems Analyst Sandia National Laboratories Sandia is a multiprogram laboratory.
3.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.
SAND Number: P Sandia is a multi-program laboratory operated by Sandia Corporation, a Lockheed Martin Company, for the United States Department.
Service Broker Lesson 11. Skills Matrix Service Broker Service Broker, provides a solution to common problems with message delivery and consistency that.
A centralized system.  Active Directory is Microsoft's trademarked directory service, an integral part of the Windows architecture. Like other directory.
#CONVERGE2014 Session 1304 Managing Telecom Directories in a Distributed or Multi-Vendor Environment David Raanan Starfish Associates.
Improving Contaminant Mixing Models For Water Distribution Pipe Networks Siri Sahib S. Khalsa University of Virginia Charlottesville, VA
Module D Panko and Panko Business Data Networks and Security, 9 th Edition © 2013 Pearson Education, Inc. Publishing as Prentice Hall.
Automated Computer Account Management in Active Directory June 2 nd, 2009 Bill Claycomb Systems Analyst Sandia National Laboratories Sandia is a multiprogram.
Collaboration and Content Customer solution case study The Yaroslavl region Government creates knowledge base of public authorities of the Yaroslavl region.
Sandia National Laboratories is a multi-program laboratory managed and operated by Sandia Corporation, a wholly owned subsidiary of Lockheed Martin Corporation,
Corporate Information Systems Delivery of Infrastructure IT Services.
Introduction to distributed systems Dr. S. Indran 23 January 2004.
B.Ramamurthy9/19/20151 Operating Systems u Bina Ramamurthy CS421.
Windows 2000 Active Directory Service COSC 513 Yongquan Cai 03/10/2001.
20411B 8: Installing, Configuring, and Troubleshooting the Network Policy Server Role Presentation: 60 minutes Lab: 60 minutes After completing this module,
Computer Science 101 Database Concepts. Database Collection of related data Models real world “universe” Reflects changes Specific purposes and audience.
Active Directory Harikrishnan V G 18 March Presentation titlePage 2 Agenda ► Introduction – Active Directory ► Directory Service ► Benefits of Active.
OCTAVE-S on TradeSolution Inc.. Introduction Phase 1: Critical Assets and threats Phase 2: Critical IT Components Phase 3: Changes Required in current.
1 Windows 2008 Configuring Server Roles and Services.
Identity Solution in Baltic Theory and Practice Viktors Kozlovs Infrastructure Consultant Microsoft Latvia.
Requirement for Enterprise Directory Services A Customer Influenced Perspective TOG DCE Program Group ® Brian Breton Gradient Technologies, Inc.
Database Management System (DBMS) an Introduction DeSiaMore 1.
Using RADIUS as a AAA backbone for Windows networks Kostas Kalevras NTUA Network Operations Centre.
LAMMPS Users’ Workshop
Master Data Management & Microsoft Master Data Services Presented By: Jeff Prom Data Architect MCTS - Business Intelligence (2008), Admin (2008), Developer.
Sandia is a multi-program laboratory operated by Sandia Corporation, a Lockheed Martin Company, for the United States Department of Energy’s National Nuclear.
Module 9 User Profiles and Social Networking. Module Overview Configuring User Profiles Implementing SharePoint 2010 Social Networking Features.
Doug Waterman.  Programmers  Graphic Designers  Computer Support  Networkers.
1 Chapter 13: RADIUS in Remote Access Designs Designs That Include RADIUS Essential RADIUS Design Concepts Data Protection in RADIUS Designs RADIUS Design.
ELECTRONIC DOCUMENT SHARING AND MANAGEMENT BY: EDWARD DISI JUSTIN HEIN BROM ESPY Senior Design 1.
Active Directory. Computers in organizations Computers are linked together for communication and sharing of resources There is always a need to administer.
Exploring Access to External Content Providers with Digital Certificates University of Chicago Team Charles Blair James Mouw.
Performing Fault-tolerant, Scalable Data Collection and Analysis James Jolly University of Wisconsin-Madison Visualization and Scientific Computing Dept.
Automated File Server Disk Quota Management May 13 th, 2008 Bill Claycomb Computer Systems Analyst Infrastructure Computing Systems Department Sandia is.
Comparison of VPS Hosting and Cloud Hosting Features.
Sierra Pacific Community College District 7300 College Avenue Sacramento, CA
Sandia is a multiprogram laboratory operated by Sandia Corporation, a Lockheed Martin Company, for the United States Department of Energy’s National Nuclear.
Administrative System for a Speech Pathology Office By Devin Peterman.
Chapter 7. Identifying Assets and Activities to Be Protected
Stop Those Prying Eyes Getting to Your Data
LOCAL CLOUDINESS Dino Buljubašić Rijad Smajlović
SP-Portal2016 Developed by KRN-2016 Kevin Titong Ricardo Sandrea
Module Overview Installing and Configuring a Network Policy Server
Introduction to Networking
Operating Systems Bina Ramamurthy CSE421 11/27/2018 B.Ramamurthy.
Azure Enables Mobility, Easy Sync and Share, and Allows Companies to Retain Data Control MINI-CASE STUDY “Azure provides the full stack of technology that.
Operating Systems : Overview
Operating Systems : Overview
Module 1: Overview of Systems Management Server 2003
Employee Monitoring Solution
Presentation transcript:

Virtual Directory Services and Directory Synchronization May 13 th, 2008 Bill Claycomb Computer Systems Analyst Infrastructure Computing Systems Department Sandia is a multiprogram laboratory operated by Sandia Corporation, a Lockheed Martin Company, for the United States Department of Energy’s National Nuclear Security Administration under contract DE-AC04-94AL85000.

Introduction Challenges and Solutions Future work Questions Agenda

Introduction What are directory information services? –What data do they contain? –Who wants that data? –Why must it be protected? –How do we protect it? What are virtual directories? What is directory synchronization?

Directory Information Services Provide user data to applications –Web portals –Instant Messaging –Single-sign-on – May contain personally identifiable information Come in several different flavors –LDAP Active Directory SunOne –Databases SQL

Virtual Directories “Virtual” – the directory doesn’t actually exist Tailor data to specific needs Collect data from different data sources

Virtual Directory Server

Virtual Directories

Directory Synchronization Reflect data from one source to another Used for various purposes –Account provisioning –Application specific needs –Performance Improvement

Synchronization

Challenges Limiting the amount of data provided Limiting who has access to the data Providing data from one data source as another type of data source Provisioning accounts Combining data from disparate data sources Collecting data from remote data sources Keeping data up-to-date

Challenge: Limit the data provided Example: –An application which only requires name and address Solution: –Configure a virtual directory to supply a subset of the total attributes available

Challenge: Limit who has access to the data Examples: –An external facing employee directory server –Data access restricted to U.S. Citizens i.e. Export Controlled Software Solution: –Use a virtual directory to reflect data from one environment to another –Use virtual directory authorization to specify access control

Challenge: Provide data from one source to another Example: –Technical Library needed information from an LDAP server –Information is only contained in a SQL database Solution: –Use a virtual directory to provide SQL information as LDAP information

Challenge: Account Provisioning Example: –Authorized account information is contained in multiple SQL databases –Accounts are stored in an LDAP directory Solution: –Use a virtual directory to create a complete view of account information –Use directory synchronization to provision new accounts according to that data

Challenge: Collect data from disparate data sources Example: –User information comes from both directories and databases Solution: –Use virtual directories to correlate and present data from multiple data sources

Challenge: Collect data from remote data sources Example: –Directory information from remote sites is needed for a local address book Solution: –Use directory synchronization to pull data from remote LDAP servers and populate it in a local LDAP store

Challenge: Keeping Data up-to-date Example: –External contact information, stored in a database, is needed in an LDAP directory Solution –Use directory synchronization to reflect database changes in the destination directory

Solution: Details Virtual Directory Services and Synchronization available on internal networks Can be ported to externally available sources Implemented by RadiantOne, from Radiant Logic, Inc.

Future Work Exploring additional security features Bringing additional data sources together

Questions

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.