FSU Metadirectory Project The Issue of Identity Management Executive Overview.

Slides:



Advertisements
Similar presentations
automated single login access to Novell storage resources
Advertisements

Prepared by Dept. of Information Technology & Telecommunication, May 1, 2015 DoITT Identity Management Security, Provisioning, Authentication.
FSU Directory Project The Issue of Identity Management Jeff Bauer Florida State University
Network Redesign and Palette 2.0. The Mission of GCIS* Provide all of our users optimal access to GCC’s technology resources. *(GCC Information Services:
Active Directory: Final Solution to Enterprise System Integration
Network Redesign and Palette 2.0. The Mission of GCIS* Provide all of our users optimal access to GCC’s technology resources. *(GCC Information Services:
Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.
UPortal.Cornell Using uPortal to integrate disparate campus systems Jon Atherton, Cornell Information Technologies
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.
July 12, 2005 CSU SIMI Workshop - Melding Policy and Technology to Manage Identity1 Provisioning Services Collaborative CSU, East Bay and CSU, San Bernardino.
Fordham University Portal My.Fordham.edu November 2008 Shaya Phillips.
Identity and Access Management: Strategy and Solution Sandeep Sinha Lead Product Manager Windows Server Product Management Redmond,
Identity and Access Management
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.
A centralized system.  Active Directory is Microsoft's trademarked directory service, an integral part of the Windows architecture. Like other directory.
© 2008 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. HP Automates Infrastructure Outsourcing.
03/07/08 © 2008 DSR and LDAP Authentication Avocent Technical Support.
Section 6.1 Explain the development of operating systems Differentiate between operating systems Section 6.2 Demonstrate knowledge of basic GUI components.
BASIC NETWORK CONCEPTS (PART 6). Network Operating Systems NNow that you have a general idea of the network topologies, cable types, and network architectures,
FSU’s Portal Project Secure Applications in Blackboard Jeff Bauer Office of Technology Integration 5/24/2005.
Quarterly Customer Meeting Active Directory Federation Services (ADFS) April 2015.
©Kwan Sai Kit, All Rights Reserved Windows Small Business Server 2003 Features.
Integrating Applications with the Directory Andrea Beesing CIT/Integration and Delivery June 25, 2002.
Directory Services at UMass  Directory Services Overview  Some common definitions  What can a directory do or not do?  User Needs Assessment  What.
Coppin State University Integration Strategies for PeopleSoft Enterprise Portal June 7, 2006 at 10:45 AM Portal 2006 Conference Gettysburg, PA.
Implementing the DirXML ® Starter Pack on NetWare ® 6.5 Richard Moore, Novell DirXML Engineering Stuart Mansell, Novell Consulting.
Chapter 9: Novell NetWare
Microsoft Active Directory(AD) A presentation by Robert, Jasmine, Val and Scott IMT546 December 11, 2004.
Designing Active Directory for Security
USM Regional PeopleSoft Conference
Using Novell iChain ® 2 to Deliver Internal Network Access without a VPN Brian Six Technical Account Manager Novell, Inc.
Windows 2000 Operating System -- Active Directory Service COSC 516 Yuan YAO 08/29/2000.
Novell Nsure TM Identity Manager 2 andGroupWise Provisioning Art Purcell, GroupWise ® Engineering, David Holbrook, DirXML Engineering,
Case Study: DirXML Implementation at Waste Management Rick Wagner Systems Engineer Novell, Inc.
Developing Applications for SSO Justen Stepka Authentisoft, LLC
GatorLink Password Management Policy March 31, 2004.
HAKA project HAKA User administration inside Finnish Higher Education Institutes results from the KATO project Barbro Sjöblom EDS 2003 Uppsala.
UNITED STATES. Understanding NDS for Directory- Enabled Solutions Ed Shropshire, NDS Developer Program Manager Novell, Inc.
USERS Implementers Target Communities NMI Integration Testbed The NMI Integration Testbed NMI Participation Developed and managed by SURA Evaluate NMI.
Building Secure, Flexible and Scalable Environments using LDAP - SANS Orlando Sacha Faust PricewaterhouseCoopers
UCLA Enterprise Directory Identity Management Infrastructure UC Enrollment Service Technical Conference October 16, 2007 Ying Ma
Riva Managed Identity Integration for Active Directory and Novell ® GroupWise ® Aldo Zanoni CEO, Managing Director Omni Technology Solutions
FSUID & AD Integration Partnering with the College of Human Sciences Jeff Bauer, AIS
Database Design and Management CPTG /23/2015Chapter 12 of 38 Functions of a Database Store data Store data School: student records, class schedules,
PS Security By Deviprasad. Agenda Components of PS Security Security Model User Profiles Roles Permission List. Dynamic Roles Static Roles Building Roles/Rules.
10/25/20151 Single Sign-On Web Service Supervisors: Viktor Kulikov Alexander Sherman Liana Lipstov Pavel Bilenko.
Erie 1 BOCES / WNYRIC eBOCES applications Visit us at:
FSU’s Portal Project Secure Login in Blackboard Jeff Bauer Office of Technology Integration 4/26/2005.
Dave Horne eSolutions Deployment Mgr Novell, Inc. Designing and Managing Novell DirXML ™ Deployments.
Information Technology Current Work in System Architecture January 2004 Tom Board Director, NUIT Information Systems Architecture.
FSU Metadirectory Project The Issue of Identity Management Executive Overview
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
Gartner: Setting Objectives for a Directory Services Project John Enck Vice President and Research Director Server and Directory Strategies.
  is a system of electronic communication that allows the user to exchange messages over the internet  Everyone’s address is unique  Two.
February, TRANSCEND SHIRO-CAS INTEGRATION ANALYSIS.
Module 1: Overview of Microsoft Office SharePoint Server 2007.
Integrating Active Directory with eDirectory ™ Using Novell Account Manager Reid Oakes Technical Team Manager Novell, Inc.
1 Active Directory Service in Windows 2000 Li Yang SID: November 2000.
Microsoft Identity Integration Server & Role Base Access Theo Kostelijk Consultant Microsoft BV
July 12, 2012 Tier I Meeting Identity Management.
ADFS - Does it Still have a Place? Fitting into the EMS puzzle Frank C. Drewes III 2016 Redmond Summit | Identity.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
Secure Connected Infrastructure
New Developments in Central Directory Service and Account Provisioning Dan Menicucci Enterprise Architect - University of Pittsburgh.
Novell Account Management Introduction and Overview
Creating Novell Portal Services Gadgets: An Architectural Overview
Time Sheets Automated: Office 365 Integration Enables Simplified Time and Activity Tracking “At TIQ we help our users track their time better and more.
Administering Your Network
Novell eDirectory™ Competitive Comparisons
ACTIVE DIRECTORY An Overview.. By Karan Oberoi.
Presentation transcript:

FSU Metadirectory Project The Issue of Identity Management Executive Overview

Outline Definitions Review of existing FSU enterprise-wide identities Demos of eDirectory software Desireable metadirectory features FSU Metadirectory Project Plan

Some Definitions Directory: list of users of a computer system –Examples: accounts (admin, mailer, garnet), NWRDC, PeopleSoft identity, Windows signon, Novell signon, Blackboard signon, dialup signon, etc. Metadirectory: “directory of directories”

Some Definitions eDirectory: Software product purchased from Novell that provides metadirectory services (an example of middleware) LDAP: Popular software protocol used for authentication Active Directory: Microsoft metadirectory product

Common FSU Identities C.A.R.S. (”ldap1”) –Captures all students, faculty & staff (+50,000 accounts) –Tied into automated systems on campus, such as FSUcard, HRMS, etc. –Used for authorizing “garnet/mailer” servers, dialup service

Common FSU Identities C.A.R.S. (”ldap1”) –Blackboard authentication (~33,000 students)

Common FSU Identities O.P.S. (Secure Login; ”ldap2”) –Captures all students, faculty & staff (+100,000) –Tied into automated systems on campus, such as FSUcard, HRMS, etc. –Used for authorizing many administrative applications (many, but not all of which will be replaced by PeopleSoft functionality)

Common FSU Identities Administrative –Managed in the enterprise “FSU” Microsoft Active Directory –Semi-manual account management –Mostly used by some ~6,000 administrative employees

Common FSU Identities Netware Account –Provides file service –Managed by User Services –Semi-manual account management –Mostly used by some ~6,000 administrative employees

Common FSU Identities PeopleSoft Account(s) –Many instances exist –Need for integrated authentication

Common FSU Identities PeopleSoft Portal

Metadirectory Demonstrations eDirectory demo # 1: Demonstrate simple use of the metadirectory to manage ERP VPN access First, let’s look at a simple functional diagram of the pieces and how they fit together:

Demo # 1 Small population Small task Easy to implement Will be integrated into large-scale metadirectory

Metadirectory Demonstrations eDirectory demo # 2: “Hire” a new employee in PeopleSoft; see their Microsoft Active Directory/Exchange account get automatically created Uses the Metadirectory testbed, which looks like:

Demo # 2 Metadirectory “testbed” Allows for metadirectory development in the “lab” Ties together disparate systems Doesn’t require lots of horsepower

Desirable MetaDirectory Features One single “public” FSU electronic identity –Call it your “FSUid” –Proposal: “First Name Initial, Entire Last Name, Unique –Must “grandfather” in existing identities –Capture all possible, reasonable attributes from existing directories –Merging schemas: 20mapping%2010_14_03.xls 20mapping%2010_14_03.xls

Desirable MetaDirectory Features “SSO” – Single Sign On. You use one FSUid and password to access many systems, once the system is connected to the eDirectory for authentication A nice “FSU identity” web page, where you can: –See all of your roles, as captured in the metadirectory –Change and synchronize your password across systems –Manage some attributes of your eDirectory entry

Desirable MetaDirectory Features Automation between systems –Hire a new employee, automatically get access to appropriate Outlook mailbox, Novell files, dialup access; transition person as roles change –eDirectory product allows for much customization Collaboration with departmental directories (other Active Directory trees, etc.)

Desirable MetaDirectory Features The “obvious” ones: –Secure connections to/from metadirectory –Reliable/redundant servers (in Novell parlance, “replicants” could reside in physically separate places on campus) –Quick response time (the “L” in LDAP ) –Well-maintained (backups, disaster recovery, problem solving, etc.)

What’s so special about eDir? Latest technology (Java, XML, etc.) Significant knowledge of eDir and DirXML in-house Novell consultants already have done initial PeopleSoft integration that can be re-used Complex data flow model allows for much flexibility:

Metadirectory Project Planning Integrated with PeopleSoft planning ERP VPN metadirectory in production now ½ day “Metadirectory retreat” scheduled for this Thursday Plan to have LDAP1/LDAP2/AD/PS Metadirectory in production by March ‘04 Track project at

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.