Email Identity Standard Proposal February 2014 Committee on Technology & Architecture Subcommittee on Identity and Access Management.

Slides:



Advertisements
Similar presentations
1 Capability Set - Bullet. 2 Common Community Problems Too Much Information –Institutions have to SPAM their faculty and students –Too many online sources.
Advertisements

UTILIZING WITH ITA. offers an entire suite of benefits for you and your students. You can also set up s for the purpose.
Reinventing using REST. Anything addressable by a URI is called a resource GET, PUT, POST, DELETE WebDAV (MOVE, LOCK)
Collaboration and Unified Dennis Schmidt, Director, OIS.
Cross Platform Single Sign On using client certificates Emmanuel Ormancey, Alberto Pace Internet Services group CERN, Information Technology department.
Information Resources Management January 16, 2001.
Kantara: From IRM to Context. The World of Access Keeps Expanding App sourcing and hosting User populations App access channels SasS apps Apps in public.
© 2006 Cisco Systems, Inc. All rights reserved. CUDN v1.1—4-1 Migrating from Voice Mail to Unified Messaging Migrating Voice Mail to Unified Messaging.
GETS Transformation Kick Off Active Directory and Blackberry Migration Firewall and Network Changes 04/21/
1. Failure is when users do not feel they get what they paid for. 2. Failure is when the overall organization fails to adopt the solution.
Internet Networking Spring 2006 Tutorial 12 Web Caching Protocols ICP, CARP.
6.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.
Staff Computer Training Exchange 2003: More User Friendly Vicki Hecht Cherry Delaney ITaP Luncheon October 14, 2003.
Satzinger, Jackson, and Burd Object-Orieneted Analysis & Design
Exchange server Mail system Four components Mail user agent (MUA) to read and compose mail Mail transport agent (MTA) route messages Delivery agent.
PENN Community Project SUG Presentation April 8, 2002.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 7: Planning a DNS Strategy.
1 No More Paper, No More Stamps: Targeted myWSU Communications Jack Alilunas, Lavon Frazier October 20, 2004.
Introduction to the Secure SMTP Server service. Secure SMTP server is a secure, reliable SMTP mail relay server for your outgoing mail. Secure SMTP service.
Pro Exchange SPAM Filter An Exchange 2000 based spam filtering solution.
#CONVERGE2014 Session 1304 Managing Telecom Directories in a Distributed or Multi-Vendor Environment David Raanan Starfish Associates.
Microsoft Dynamics CRM 2011 Update Rollup 5 Enhancements Dana Martens Escalation Engineer Microsoft.
1 No More Paper, No More Stamps: Targeted myWSU Communications Lavon R. Frazier April 27, 2005 Copyright Lavon R. Frazier, This work is the intellectual.
1 Outlook Live Live Messenger SkyDrive Office Live Live Spaces Live Groups.
ADVANCED MICROSOFT ACTIVE DIRECTORY CONCEPTS
Exchange 2010 Recipient and Mailbox Management IT:Network:Applications.
Managing Client Access
0 Copyright 2008 Global 360, Inc. All Rights Reserved Presentation of Success Story Robert Lang.
Tips & Tricks Presented by: Tim Trice Madisonville Community College.
Model Bank Testing Accelerators “Ready-to-use” test scenarios to reduce effort, time and money.
Confidential: University of California San Francisco Medical Center Situation and background Risks Opportunities Evaluation of candidates Security compliance.
1 Telematica di Base Applicazioni P2P. 2 The Peer-to-Peer System Architecture  peer-to-peer is a network architecture where computer resources and services.
Microsoft Active Directory(AD) A presentation by Robert, Jasmine, Val and Scott IMT546 December 11, 2004.
CH2 System models.
Microsoft Office Outlook 2013 Microsoft Office Outlook 2013 Courseware # 3252 Lesson 3: Working with People.
MCSE Guide to Microsoft Exchange Server 2003 Administration Chapter Two Installing and Configuring Exchange Server 2003.
Identity Standard Proposal Identity and Access Management Subcommittee December 12, 2013.
Module 12 Integrating Exchange Server 2010 with Other Messaging Systems.
Module 3 Managing Recipient Objects. Module Overview Managing Mailboxes Managing Other Recipients Configuring Address Policies Configuring Address.
Module 4: Managing Recipients. Overview Introduction to Exchange Recipients Creating, Deleting, and Modifying Users and Contacts Managing Mailboxes Managing.
Module 7 Planning and Deploying Messaging Compliance.
MCSE Guide to Microsoft Exchange Server 2003 Administration Chapter Five Managing Addresses.
1 Visalia Unified School District SRTS User Training November 21, 2005 By SRTS Support
MEMBERSHIP AND IDENTITY Active server pages (ASP.NET) 1 Chapter-4.
Advanced CAMP: BoF Summaries. 2 Role-based Access Control (RBAC)
Module 9 User Profiles and Social Networking. Module Overview Configuring User Profiles Implementing SharePoint 2010 Social Networking Features.
MCSE Guide to Microsoft Exchange Server 2003 Administration Chapter Three Managing Recipients.
MCSE Guide to Microsoft Exchange Server 2003 Administration Chapter One Introduction to Exchange Server 2003.
Module 5: Managing Addresses and Address Lists.
1 Visalia Unified School District Principal & Area Administrator Service Request Approval Processing Using The SRTS November 16, 2005 Administrative Services.
Built atop SharePoint Online, WorkPoint 365 Offers a Project and Case Management Solution to Boost Business Productivity and Deliver Governance OFFICE.
Microsoft Exchange Server 2013 Security Mick Tomlinson– Technical Instructor New Horizons.
Microsoft ® Outlook & Microsoft Exchange Delivering Value & Choice across PC, Phone, and Browser The Right Tool for the Job Delivering Value & Choice.
Education Solution.
California Successes Engagement & Collaboration –Regional HIEs functioning and expanding for 25 years –25 organizations using Epic’s HIE solutions, many.
NBPS Computer Logins, Accounts, and User Storage Del Kunert Director of Technology Confidential and Proprietary to New Brunswick Public Schools Slide.
L’Oreal USA RSA Access Manager and Federated Identity Manager Kick-Off Meeting March 21 st, 2011.
Online Training Course
AIM/education directory (Ed dir)
Boomerang Adds Smart Calendar Assistant and Reminders to Office 365 That Increase Productivity and Simplify Meeting Scheduling OFFICE 365 APP BUILDER.
Letsignit, an Automated Signature Solution for Microsoft Office 365 and Microsoft Exchange, Provides Efficiency in Branding and Customization OFFICE.
IWRITER 365 Offers Seamless, Easy-to-Use Solution for Using, Designing, Managing, and Sharing All Your Company Templates in Microsoft Office 365 OFFICE.
Identity Standard Proposal
Decisions Delivers an Easy Way to Plan, Organize and Run Efficient Board and Leadership Meetings Along with the Security of Microsoft Office 365 OFFICE.
That Saves Money and Preserves Opportunities
ForceManager Integrates with Office 365 Outlook Mail, Calendar, Contacts, Word, and Excel for a Smart, Fast, Intuitive Mobile CRM Sales Solution OFFICE.
Migrating to Office 365 from Google mail and exchange
What is Four51?.
Steering committee Name Department Jonathan Neff
Letsignit, an Automated Signature Solution for Microsoft Office 365 and Microsoft Exchange, Provides Efficiency in Branding and Customization OFFICE.
Presentation transcript:

Identity Standard Proposal February 2014 Committee on Technology & Architecture Subcommittee on Identity and Access Management

Situation 2 Exchange service provides to 30,500 users across the UCSF enterprise Many separate systems have been consolidated including the Medical Center and School of Exchange currently receives for 140 distinct domains Some units adopted primary addresses when joining, but 73 domains still have new accounts provisioned with their original domain. Rules for assigning a new individual to the appropriate domain are inconsistent, and process is completely manual

Consequences of Current Situation 3 Delays the manual creation of new accounts Barrier to implementing automated processes for account provisioning Rollout of new services and integration with cloud service providers are more complicated and often delayed Movement of individuals between units results in change of address. This is increasingly problematic as cloud service adoption at UCSF grows

Target 4 A uniform address for all members of the UCSF community Continuous delivery of sent to all historical addresses in perpetuity Benefits Simpler experience for UCSF community Uniform, recognizable brand to patients, donors, colleagues, and recruits Fewer changes - move within organization does not change address Simpler account provisioning logic - faster turnaround and facilitates automation Single namespace more closely matches cloud service integration requirements

What is a Primary Address? Is the main address published within our directory service (Active Directory) Is the address that is displayed in the global address list (GAL) Is the ‘From:’ address on outgoing Is frequently used by cloud service providers as the most obvious identifier for account belonging to UCSF personnel 5

What is a Secondary Address? An alternate address published within our directory service An account can have more than one secondary address is accepted and processed normally for all secondary addresses in addition to the primary Every account that doesn’t as the primary has at least address as a secondary Over 1200 accounts have secondary addresses 6

Proposal 7 New individuals joining the UCSF community will receive a primary address –Alternate domain addresses will no longer be provisioned as a secondary for new accounts Existing UCSF individuals not as a primary: –Secondary address populated with their current address –Primary address set to format –UCSF Listserv memberships updated with new primary address –Directory systems (CLS, SIS, etc) updated –UCSF Box, and other cloud service accounts updated

User Impact 8 sent to prior address or new address will be delivered to a single mailbox – No Impact Loss of identity and ‘branding’ associated with domain suffixes on outgoing mail – Impact Variable Individuals may want to update business cards and other print collateral – Impact Low to Moderate Individuals external to UCSF may notice their address books have populated multiple entries for UCSF correspondents – Impact Low Individuals reassigned addresses like etc. as their primary address due to name collisions may be dissatisfied with the outcome – Impact Variable

User Impact 9 Custom inbox rules built manually from addresses rather than the global address list will need updating – Impact Low Users may forget that they used their previous address for registrations on external websites – Impact Variable Business processes that query Active Directory for addresses (sub- optimal choice, but may exist) will no longer work – Impact Unknown Ability to send to external Listservs that restrict input to validated addresses will be interrupted until Listserv account is updated with new address – Impact Moderate

Alternate Servers 10 There is no requirement that members of the UCSF community use the enterprise Exchange server A small number of units continue to operate independent servers Suggestion for provisioning / cloud integration for this population: –Create account as with other new hires –Existence of account will facilitate integrations that need address, even if function not utilized –Inform account owner that only address should be used for authenticating to campus-wide and integrated services

11 DomainAccounts ucsfmedicalcenter.org9381 anesthesia.ucsf.edu529 peds.ucsf.edu481 obgyn.ucsf.edu447 medsfgh.ucsf.edu416 medicine.ucsf.edu388 orthosurg.ucsf.edu282.. dentistry.ucsf.edu79.. ccrc.ucsf.edu1 chanoff.ucsf.edu1 ebinet.ucsf.edu1 clinlab.ucsfmedctr.org1 uap.ucsf.edu1 Alternate Domain Statistics

Visual Impact of Domain – Mac Mail 12 Example from Mac mail client of a message addressed to recipients in four unique domains. The domain identity of the recipients is not visible in the user interface

Visual Impact of Domain – Outlook on Windows 13 Same example using the Outlook client on a Windows computer

Visual Impact of Domain – Outlook Web Access on Windows 14 Same example with Outlook Web Access (OWA) in a Firefox browser window

Visual Impact of Domain – IOS 15 Corresponding example on an iPhone None of the clients surveyed displayed the recipient’s domain under normal operation

Recent Integration Challenges 16 UCSF Box –Box expected a single primary domain –Two UCSF staff members a month resolving complication, delaying the implementation Cisco Unified Communications (new phone solution) –Unable to build Uniform Resource Identifier (URI – analogous to internal phone number) from primary address because they require single domain –Ad hoc heuristics are in development to pick address from among multiple candidate secondary addresses

Recent Integration Challenges 17 DocuSign –Reached internal character limit processing list of UCSF domains during authentication process –Domains through ‘larc.ucsf.edu’ work, all domains after ‘legal.ucsf.edu’ fail –Issue still unresolved as of 1/31

UCSF Box Integration 18 Definition of ‘Your Company’ is almost comically complex

Approval Process 19 9/26/13 – Endorsed by CTA Identity and Access Management Subcommittee 12/12/13 – Endorsed by Committee on Technology and Architecture 12/13/13 – Endorsed by Committee on Business Technology 2/6/14 – Endorsed by IT Governance Steering Committee

Community Input to Date 20 Presented to School of Medicine Clinical Chairs distribution to School of Medicine MSO list Presented to IT-Forum Vetted with School of Nursing Leadership Vetted with School of Pharmacy Leadership -Vetting with School of Dentistry in progress -Vetting with Academic Senate in progress

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.