Grouper at Duke Klara Jelinkova, Duke University Shilen Patel, Duke University Internet 2 Fall Meeting San Diego 2007.

Slides:



Advertisements
Similar presentations
DIGIDOC A web based tool to Manage Documents. System Overview DigiDoc is a web-based customizable, integrated solution for Business Process Management.
Advertisements

Grouper Training Developers and Architects LDAP Shilen Patel Duke University This work licensed under a Creative Commons Attribution-NonCommercial 3.0.
Identity Management at the University of Florida Mike Conlon, Director of Data Infrastructure University of Florida, Gainesville, Florida Background Identity.
Use Mobile Guidebook to Evaluate this Session. M2.8 How Do I Find That??: Improving Schedule of Classes Search Options John Dickerson Mississippi State.
Information Technology and Computing Services One Stop East Carolina University Kari Mills New Technologies Development Group Empowering East Carolina.
Netcentives Inc. 475 Brannan St. San Francisco, CA NASDAQ: NCNT Netcentives Inc. 475 Brannan St. San Francisco,
1 ITEC810 An Application Suite for a Student Database Project Supervisor: Abhaya Nayak Student Id: Andrew Johnson.
UCB Enterprise Directory Services. Directory Services – Project History  Requirements defined  Project commission & goals articulated  Project teams.
Project 1 Assignment Building a mini-database for CCI in UNCC which includes entity sets: departments (CS,SIS, bioinformatics), faculties, courses given.
Seton Hall University Banner Project – June 2007 Update Banner Project Update to the Finance Committee of the Board of Regents June 6, 2007 Stephen Landry,
11 3 / 12 CHAPTER Databases MIS105 Lec14 Irfan Ahmed Ilyas.
UCB Enterprise Directory Services. Directory Services – Project History  Requirements defined  Project commission & goals articulated  Project teams.
Alcatel Customized Training Site David Otero University of San Diego MSIT 526 Dr. Carl Rebman.
Copyright Statement © Jason Rhode and Carol Scheidenhelm This work is the intellectual property of the authors. Permission is granted for this material.
1 No More Paper, No More Stamps: Targeted myWSU Communications Jack Alilunas, Lavon Frazier October 20, 2004.
#CONVERGE2014 Session 1304 Managing Telecom Directories in a Distributed or Multi-Vendor Environment David Raanan Starfish Associates.
1 No More Paper, No More Stamps: Targeted myWSU Communications Lavon R. Frazier April 27, 2005 Copyright Lavon R. Frazier, This work is the intellectual.
NERCOMP Managing Campus Affiliates Managing Campus Affiliates Faculty? Student? Faculty? Student? Staff? Criss Laidlaw Director of Administrative.
Using New Tools but Keeping the Old A collaborative approach between a University's Academic Technology department and the Library to enhance access to.
The Role of DBMS in Computing
Introduction to Colleague An introduction to using Durham Tech’s Enterprise Resource Planning System (ERP)
Cizer.NET Reporting Forum for Business Intelligence Copyright © 2005 Cizer Software OR
Securing the System A K-12 Case Study. Background Rural School District 93% Free and Reduced Lunch 1100 students 3 Schools 1 Systems Administrator.
Managing time-driven entitlement policies with Identity Manager E. Axel Larsson Drew University 20 July 2005.
Introduction to Grouper Part 1: Access Management & Grouper Tom Barton University of Chicago and Internet2 Manager – Grouper Project.
Directory Services at UMass  Directory Services Overview  Some common definitions  What can a directory do or not do?  User Needs Assessment  What.
GRID Centralized management of the Globus grid-mapfile Carlo Rocca INFN, Catania.
Group Management at Brown James Cramton Brown University April 24, 2007.
Using the SAS® Information Delivery Portal
Grouper at the University of Minnesota Christopher A. Bongaarts Grouper Virtual Working Group May 20, 2013.
Uniting Cultures, Technology & Applications A Case Study University of New Hampshire.
Penn Groups PennGroups Central Authorization System June 2009.
Information Technologies Jeremy Mortis 1 hi LDAP The Online Directory.
NMI-EDIT CAMP Synopsis, ISCSI Storage Solution, Linux Blade Cluster, And Current State Of NetID By Jonathan Higgins Presentation Template available from.
University of Michigan Enterprise Directory Services Appendix A Conceptual Architecture.
Submitting Mid-term Grades Tutorial v21 Submitting Mid-term Grades Tutorial.
Using SAS® Information Map Studio
Integrating Your Administrative Database and Mailing List AIKCU 2015 David Abney – Web Developer/Programmer Shane Wilson – Senior Systems and Network Coordinator.
The DSpace Course Module – User management and authentication options.
UCLA Enterprise Directory Identity Management Infrastructure UC Enrollment Service Technical Conference October 16, 2007 Ying Ma
Implementing LDAP Client/Server System for Directory Service By Maochun Sun Project Advisor: Dr. Chung-E Wang Department of Computer Science California.
1 Copyright © 2004, Oracle. All rights reserved. Introduction.
MCSE Guide to Microsoft Exchange Server 2003 Administration Chapter Five Managing Addresses.
Kuali Identity Management: Introduction and Implementation Options Jasig - Spring 2010 Wednesday, March 10, :30 am.
Otto is a system to maintain and analyze your hours on the job Job journal in familiar Outlook style calendar format – Maintaining your hours in.
8th Sakai Conference4-7 December 2007 Newport Beach Integration: Users and Groups Mark J. Norton Nolaria Consulting.
Rapid On-boarding Getting Employees Up To Speed Quickly Through AgLearn.
Implementing a Role Management System Mair é ad Martin Carrie Regenstein Internet2 Fall Meeting September 20, 2005.
Grouper Training – Admin – Subject API – Part 4 Shilen Patel Duke University This work licensed under a Creative Commons Attribution-NonCommercial 3.0.
Grouper Training – Admin – Provisioning Service Provider (PSP) – Part 1 Shilen Patel Duke University This work licensed under a Creative Commons Attribution-NonCommercial.
ISC-ASTT PennGroups Central Authorization System (Grouper) June 2009.
Grouper: A Toolkit for Managing Groups Tom Barton blair christensen University of Chicago.
Grouper Training Developers and Architects How to Design Groups Shilen Patel Duke University This work licensed under a Creative Commons Attribution-NonCommercial.
Google Code Libraries Dima Ionut Daniel. Contents What is Google Code? LDAPBeans Object-ldap-mapping Ldap-ODM Bug4j jOOR Rapa jongo Conclusion Bibliography.
Ad-hoc Lists / Opt-In Problem Definition Access rules for many applications and services cannot be derived from an authoritative source and must therefore.
SAP BI – The Solution at a Glance : SAP Business Intelligence is an enterprise-class, complete, open and integrated solution.
19 Copyright © 2008, Oracle. All rights reserved. Security.
Introducing Access Management
IST 220 – Intro to Databases
I2/NMI Update: Signet, Grouper, & GridShib
Rebecca B. Brigham, MSW Assistant Dean for Field Education
Central Authorization System (Grouper) June 2009
Identity Management at the University of Florida
College Student Management System
Technical Capabilities
Optimize faculty load & course scheduling Summary of Recommendations
Grouper: A Toolkit for Managing Groups
UF Directory Coordinator Training
Title - Subtitle Date Month Year Bangalore Section.
Presentation transcript:

Grouper at Duke Klara Jelinkova, Duke University Shilen Patel, Duke University Internet 2 Fall Meeting San Diego 2007

Duke University at a Glance Durham NC Ranking US News: 8 Students Enrollment (full-time) 12,824 Undergraduate 6,197 Graduate and Professional 6,627 Faculty 2,664 (including research professors, lecturers etc.) Employees 30,551 Number of Courses Fall ,000 Number of courses used by iTunesU 4,000

The Problem Find a consistent and consolidated way to manage the large numbers of class- department -, and project- based groups. Provide an automated load of class data to the Enterprise directory from the Authoritative Enterprise Systems. Duke needed to provide an interface for super-users providing faculty support to create and manage ad- hoc groups and modify existing pre-loaded group data and have those modification propagated through the directory to end-user applications.

Solution Grouper was first connected up to the source data systems to automatically receive class list data and address the ERP-maintained groups. A hands on training process was established as well as policies and procedures for group stewardship. The grouper interface was rolled out to select super- users to give them the ability to modify automatically groups and create ad-hoc groups as needed. In production for 2 years.

How it has been implemented

Applications that use it iTunesU Elluminate Live - WebConferencing Lectopia - Lecture capture Duke Pass - Student portal Dcal - Calendaring WebFiles - Online file storage

How it has implemented - WebFiles

How it hast been implemented - scale 104,439 groups total. 104,302 course groups (instructor, student, and TA groups for each course) 26 dynamic groups 111 ad-hoc groups 91,551 stems total 1,125,013 entries in the grouper_memberships table 208,540 entries in the grouper_members table.

Group Information in LDAP Database triggers instead of LDAP-PC Novell IdM LDAP attributes isMemberOf eduCourseMember eduCourseOfferring

Database Triggers

Dynamic Groups What are they? How do we maintain them? Updated by Novell IdM

Dynamic Groups Data Flow

Example Usage of Dynamic Groups LDAP filters to determine academic careers (&(eduPersonAffiliation=student) (|(&(duStudentStatusC1=ACTIVE)(duPSAcadCareerC1=LAW)) (&(duStudentStatusC2=ACTIVE)(duPSAcadCareerC2=LAW)) (&(duStudentStatusC3=ACTIVE)(duPSAcadCareerC3=LAW)) (&(duStudentStatusC4=ACTIVE)(duPSAcadCareerC4=LAW)))) (isMemberOf=urn:mace:duke.edu:groups:students:careers:LAW)

Authorization Examples with Grouper dCal Group with dynamic and regular groups as members Eligibility data set in LDAP iTunesU Class data in Grouper eduCourseMember available using Shibboleth

Issues Performance Managing Groups Searching Adding or Removing Administrators User Interface Navigation Java Exceptions Favorite Groups Bulk operations

Issues - 2 Subject API Performance Subject Queries FERPA issues isMemberOf access issues

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.