Introduction to Identity Management with MIIS 2003 Steve Plank Architectural Engineer Session code.

Slides:



Advertisements
Similar presentations
Agenda 2 factor authentication Smart cards Virtual smart cards FIM CM
Advertisements

© 2010 Quest Software, Inc. ALL RIGHTS RESERVED Quests solutions for Windows Management Lee Elliott & Jonathan Culver – Technical Account Managers Windows.
DIGIDOC A web based tool to Manage Documents. System Overview DigiDoc is a web-based customizable, integrated solution for Business Process Management.
Welcome to Middleware Joseph Amrithraj
Designing, Deploying and Managing Workflow in SharePoint Sites Steve Heaney Product Development Manager OBS
Quality in Identity and Access Management Systems IDM: Overview Michele Brass, PMP PMI Westchester Chapter Program Manager – Collaboration Tools.
IBM Software Group ® Accessing Domino via Outlook iNotes Access for Microsoft Outlook - Notes Domino 5.5 – Domino Access for MS Outlook - Notes Domino.
Active Directory: Final Solution to Enterprise System Integration
Identity Management with Microsoft Identity Integration Server.
Project Server “12”: Developing Project Management Solutions Phil Smail OFF311 Program Manager Microsoft Project Business Unit.
Identity and Access Management: Strategy and Solution Sandeep Sinha Lead Product Manager Windows Server Product Management Redmond,
Identity and Access Management
Access and Identity Management for Enterprise Portals Rohit Gupta Director, Identity Management Product Management Oracle Corporation.
Microsoft Identity Integration Server 2003 (MIIS) Kim Mikkelsen Senior Technology Specialist Microsoft.
Session Objectives And Takeaways Identify the role of Service Manager in the System Center suite Service Manager - Integrating People, Process and Technology.
Understanding Active Directory
#CONVERGE2014 Session 1304 Managing Telecom Directories in a Distributed or Multi-Vendor Environment David Raanan Starfish Associates.
Enterprise Reporting with Reporting Services SQL Server 2005 Donald Farmer Group Program Manager Microsoft Corporation.
Microsoft Identity and Access Solutions Market Trends and Futures
Empower Enterprise Mobility Jasbir Gill Azure Mobility.
Identity Lifecycle Management Jonny Chambers Senior Technical Specialist Microsoft Ireland
Module 2: Managing User and Computer Accounts
May 30 th – 31 st, 2006 Sheraton Ottawa. Microsoft Certificate Lifecycle Manager Saleem Kanji Technology Solutions Professional - Windows Server Microsoft.
1 Objectives Windows Firewalls with Advanced Security Bit-Lock Update and maintain your clients using Windows Server Update Service Microsoft Baseline.
A look at the current initiatives within UWE such as SharePoint, consolidation and virtualisation as well as some of the technology trends we can see coming.
1 8/24/2002 Why Upgrade to DS3.0? Xerox and the DocuShare Business Unit continue to invest in DocuShare. We want our customers to continue to invest in.
Microsoft Active Directory(AD) A presentation by Robert, Jasmine, Val and Scott IMT546 December 11, 2004.
USM Regional PeopleSoft Conference
A detailed look at the Microsoft Windows Infrastructure at UWE including Active Directory (AD), MIIS, Exchange, SMS, IIS, SQL Server, Terminal Services.
Developing Reporting Solutions with SQL Server
Forefront Identity Manager 2010 Deep Dive
Windows Azure Conference 2014 Deploy your Java workloads on Windows Azure.
Case Study: DirXML Implementation at Waste Management Rick Wagner Systems Engineer Novell, Inc.
From Virtualization Management to Private Cloud with SCVMM 2012 Dan Stolts Sr. IT Pro Evangelist Microsoft Corporation
Riva Managed Identity Integration for Active Directory and Novell ® GroupWise ® Aldo Zanoni CEO, Managing Director Omni Technology Solutions
1 Introduction to Microsoft Windows 2000 Windows 2000 Overview Windows 2000 Architecture Overview Windows 2000 Directory Services Overview Logging On to.
Tech Ed North America /24/2017 1:59 AM SESSION CODE: SIA327
Microsoft ® Official Course Module 13 Implementing Windows Azure Active Directory.
1 Objectives Windows Firewalls with Advanced Security Bit-Lock Update and maintain your clients using Windows Server Update Service Microsoft Baseline.
Empowering people-centric IT Unified device management Access and information protection Desktop Virtualization Hybrid Identity.
DEP311 Identity Management with Microsoft Identity Integration Server (formerly MMS) Steve Plank Architectural Engineer |Microsoft UK Visit
Windows Role-Based Access Control Longhorn Update
LegendCorp What is System Center Virtual Machine Manager (SCVMM)? SCVMM at a glance Features and Benefits Components / Topology /
AUTOMATING DAAS DESKTOPS WITH CITRIX CORTEX Tony Sanchez WW Alliances Solutions Architecture Citrix Systems Inc SESSION CODE: CLI415 (c) 2011 Microsoft.
Enterprise Identity Steve Plank – Microsoft Hugh Simpson-Wells – Oxford Computer Group Dave Nesbitt – Oxford Computer Group.
System Center Lesson 4: Overview of System Center 2012 Components System Center 2012 Private Cloud Components VMM Overview App Controller Overview.
Using MS Excel to validate & load your data into Oracle EBS.
Federico Guerrini IDA TSP, EMEA Incubation Team From Identity Synchronization to Identity Management.
Copyright Microsoft Corp Sandeep Katyal TechnologistMicrosoft Solving the Identity Management problem using MIIS and ADFS.
Integrating Active Directory with eDirectory ™ Using Novell Account Manager Reid Oakes Technical Team Manager Novell, Inc.
Microsoft ® Forefront ™ Identity Manager 2010 Infrastructure Planning and Design Published: June 2010.
Module 10: Identity and Access Services in Windows Server 2008 Active Directory.
MCSE Guide to Microsoft Exchange Server 2003 Administration Chapter One Introduction to Exchange Server 2003.
Microsoft Identity Integration Server & Role Base Access Theo Kostelijk Consultant Microsoft BV
Windows NT ® Security Management: Extending Windows NT 5.0 Security Management Tools, Part 2 Praerit Garg Program Manager Windows NT Security Microsoft.
Security Insights: Identity Theft & Management. The Identity Theft Problem What is Identity Theft? Dumpster diving Low tech Phishing/Pharming Targets.
Microsoft Identity Integration Server 2003 Overview Microsoft Corporation April 2004.
Introduction to SQL Server 2000 Reporting Services Jeff Dumas Technical Specialist Microsoft Corporation
Chris Louloudakis Solution Specialist Identity & Access Management Microsoft Corporation SVR302.
Unified Address Book Security Implications. Unified Address Book Overview –What are we talking about –What is the Risk –What are we doing to minimize.
Active Directory Domain Services (AD DS). Identity and Access (IDA) – An IDA infrastructure should: Store information about users, groups, computers and.
Protect your data Enable your users Desktop Virtualization Information protection Mobile device & application management Identity and Access Management.
Introduction to the Microsoft Identity Integration Server and Roadmap
2016 Citrix presentation.
Business Connectivity Services in SharePoint 2010 and Office 2010
Using Microsoft Identity Manger with SharePoint 2016 to fill the User Profile Sync Gap Max Fritz Senior Systems Consultant Now Micro.
Access and Information Protection Product Overview October 2013
SharePoint 2016 in MIM 2016 Robi Vončina Kompas Xnet.
System Center Operations Manager 2007 – Technical Overview
TechEd /6/ :24 PM © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks.
Presentation transcript:

Introduction to Identity Management with MIIS 2003 Steve Plank Architectural Engineer Session code

Agenda MIIS Scenarios How MIIS works MIIS Futures

Hire Scenario HRSystem MIIS Notes ContractorSystem AD App Mode SQLServer iPlanetDirectory ActiveDirectory LotusNotes File LDAP SQL LDAP

Fire Scenario HRSystem MIIS Notes ContractorSystem AD App Mode SQLServer iPlanetDirectory ActiveDirectory LotusNotes File LDAP SQL LDAP

Identity Joining Scenario HRSystem MIIS iPlanetDirectory ActiveDirectory LotusNotes givenName sn title mail employeeID telephone Klarek Cenntt 008 givenName sn title mail employeeID telephone givenName sn title mail employeeID telephone Clark Kennttt 007 givenName sn title mail employeeID telephone Klarke Kent Superhero Clark Kent 007 Reporter Clark Kent Reporter 007 Project to Metaverse givenName sn title mail employeeID telephone Clark Kent 007 Join on employeeID JOINED PROJECTED 007 Join on employeeID JOINED Join on employeeID JOINED Manual Join

Attribute Flow Scenario HRSystem MIIS iPlanetDirectory ActiveDirectory LotusNotes FirstName LastName EmployeeID Title Telephone givenName sn title mail employeeID telephone Klarek Cenntt 008 givenName sn title mail employeeID telephone givenName sn title mail employeeID telephone Clark Kennttt 007 givenName sn title mail employeeID telephone Klarke Kent Superhero 007 givenName sn title mail employeeID telephone Clark Kent 007 Reporter Clark Kent Reporter 007 Identity Data Aggregation givenName sn title mail employeeID telephone 007 Clark Kent 007 Reporter

Attribute Flow Scenario HRSystem MIIS iPlanetDirectory ActiveDirectory LotusNotes FirstName LastName EmployeeID Title Telephone givenName sn title mail employeeID telephone Klarek Cenntt 007 givenName sn title mail employeeID telephone givenName sn title mail employeeID telephone Clark Kennttt 007 givenName sn title mail employeeID telephone Klarke Kent Superhero 007 givenName sn title mail employeeID telephone Clark Kent 007 Reporter Clark Kent Reporter 007 Clark Kent Reporter Reporter Clark Kent Clark Reporter Identity Data Brokering (Convergence)

Attribute Flow Scenario HRSystem MIIS iPlanetDirectory ActiveDirectory LotusNotes FirstName LastName EmployeeID Title Telephone givenName sn title mail employeeID telephone 007 givenName sn title mail employeeID telephone givenName sn title mail employeeID telephone Clark 007 givenName sn title mail employeeID telephone Kent 007 givenName sn title mail employeeID telephone Clark Kent Clark Kent Reporter 007 Kent Reporter Reporter Clark Kent Clark Reporter Identity Data Integrity Enforcement 007 Superhero ReporterSuperhero

Identity Data Integrity Enforcement HRSystem MIIS iPlanetDirectory LotusNotes ActiveDirectory FirstName LastName EmployeeID Title Telephone givenName sn title mail employeeID telephone 007 givenName sn title mail employeeID telephone givenName sn title mail employeeID telephone Clark 007 givenName sn title mail employeeID telephone Kent 007 givenName sn title mail employeeID telephone Clark Kent Clark Kent Reporter 007 Kent Publisher Publisher Clark Kent Clark Reporter Identity Data Integrity Enforcement 007 Reporter SuperheroReporter

MIIS in action… Demo

Agenda MIIS Scenarios How MIIS works MIIS Futures

ConnectorSpace Management Agent (MA) ConnectedDirectories Terminology Metaverse i/f“filters”schemafiltersrules i/f“filters”schemafiltersrules i/f“filters”schemafiltersrules StagingProjectionProvisioningExportJoin Import/Export Run ProfileSync Run Profile

ConnectorSpace Management Agent (MA) ConnectedDirectories Terminology Metaverse i/f“filters”schema i/f“filters”schemafiltersrules i/f“filters”schema Rules Extension Import Attribute FlowExport Attribute Flow filtersrules filtersrules

MIIS – Metadirectory Functionality and Connectivity Identity Data LDAPSQL Wide range of connectivity Active Directory & ADAM Sun/iPlanet Directory IBM DS Novell eDirectory Microsoft SQL 2000 & SQL 7 Oracle 9i/8i IBM DB2 Lotus Notes 5.x/6.x Microsoft Exchange 5.5, 2K, 2K3 Microsoft NT 4.x RACF DSML, LDIF, CSV, fixed width …others to follow MA SDK allows ISVs and corporate developers to build custom MAs NOS LOB Apps

Synchronizing Identity Stores - The Management Agent SDK Easy to use SDK to build Management Agents.Net hosted set of interfaces Address IT Pro and ISV audiences IT Pro Fast MA development using template Simple to configure by reusing “Extensible MA UI” ISVs Allow customizing MA configuration UI and provide customized look and feel Enable packaging and redistribution of management agents Enable Identity Manager-integrated development of MA configuration UI Supports password synchronization

Password Synchronization: Password Change Notification Password Filter The password filter is extremely lightweight to minimize any impact on the DC Filter receives the change notifications and securely communicates passwords to the service Password Notification Service Service encrypts and queues the password notification to be delivered to the registered targets (MIIS or HIS) Notifications are transmitted via secure RPC to target Queuing and retry mechanism guards against lost passwords due to connectivity issues PCNS and MIIS mutually authenticate to prevent spoofing Active Directory Domain Controller LSA Process Password Filter Password Notification Service Identity Integration Server

Password Synchronization: Identity Integration Server MIIS receives notifications from PCNS and locates matching object for user’s Active Directory account MIIS leverages metadirectory “join” relationship to locate correct accounts in the target systems MIIS maintains queue for each target system to optimize delivery and handle systems that are less reliable Passwords can be synchronized to any system managed by MIIS management agents. Password Extensions allow synchronizing passwords to custom applications and directories Identity Integration Server PCNS Connected Directories Connector Space Queue Metaverse

Visualization Different hierarchies suit different needs Multiple hierarchical representations can be discovered from data Polyarchy eliminates the requirement for fixed hierarchy Polyarchy provides multiple hierarchical views and richer visualization of infrastructure information

MIIS Scenarios How MIIS works MIIS Futures Agenda

MIIS Roadmap Lowering the cost and risks of Identity Management Extending MA Reach and password capabilities MIIS - Gemini MIIS 2003 SP1 Q4/CY04 Codeless provisioning Entitlement reporting Self-service platform Password reset additional MAs Additional MAs MA SDK Password Extensions Password synchronization from Windows desktop Providing tools for provisioning MIIS 2003 SP1 ResKit - Q4/CY04 Code generator Workflow

1. Codeless provisioning 2. Richer logging/auditing 3. Self-service platform 4. Workflow for provisioning and self-service 5. Password self-service reset 6. Cluster support 7. Computed attributes (dynamic groups) 8. Cross-forest group management 9. Entitlement reporting 10. Capacity planning documentation 11. Scalability improvements 12. UNIX / OpenLDAP / Generic LDAP MA

Review MIIS Scenarios How MIIS works MIIS Futures

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.