Presentation is loading. Please wait.

Presentation is loading. Please wait.

Email Identity Standard Proposal February 2014 Committee on Technology & Architecture Subcommittee on Identity and Access Management.

Published byKellie Brooks Modified over 9 years ago

Similar presentations

Presentation on theme: "Email Identity Standard Proposal February 2014 Committee on Technology & Architecture Subcommittee on Identity and Access Management."— Presentation transcript:

1 Email Identity Standard Proposal February 2014 Committee on Technology & Architecture Subcommittee on Identity and Access Management

2 Situation 2 The @UCSF Exchange service provides email to 30,500 users across the UCSF enterprise Many separate email systems have been consolidated into @UCSF, including the Medical Center and School of Medicine @UCSF Exchange currently receives email for 140 distinct domains Some units adopted ‘@ucsf.edu’ primary addresses when joining, but 73 email domains still have new accounts provisioned with their original domain. Rules for assigning a new individual to the appropriate domain are inconsistent, and process is completely manual

3 Consequences of Current Situation 3 Delays the manual creation of new accounts Barrier to implementing automated processes for account provisioning Rollout of new services and integration with cloud service providers are more complicated and often delayed Movement of individuals between units results in change of email address. This is increasingly problematic as cloud service adoption at UCSF grows

4 Target 4 A uniform primary @ucsf.edu address for all members of the UCSF community Continuous delivery of email sent to all historical addresses in perpetuity Benefits Simpler experience for UCSF community Uniform, recognizable brand to patients, donors, colleagues, and recruits Fewer changes - move within organization does not change email address Simpler account provisioning logic - faster turnaround and facilitates automation Single email namespace more closely matches cloud service integration requirements

5 What is a Primary Address? Is the main email address published within our directory service (Active Directory) Is the address that is displayed in the global address list (GAL) Is the ‘From:’ address on outgoing email Is frequently used by cloud service providers as the most obvious identifier for account belonging to UCSF personnel 5

6 What is a Secondary Address? An alternate email address published within our directory service An account can have more than one secondary address Email is accepted and processed normally for all secondary addresses in addition to the primary Every account that doesn’t use @ucsf.edu as the primary has at least one @ucsf.edu address as a secondary Over 1200 accounts have multiple @ucsf.edu secondary addresses 6

7 Proposal 7 New individuals joining the UCSF community will receive a first.last@ucsf.edu primary address –Alternate domain addresses will no longer be provisioned as a secondary for new accounts Existing UCSF individuals not using @ucsf.edu as a primary: –Secondary address populated with their current email address –Primary address set to first.last@ucsf.edu format –UCSF Listserv memberships updated with new primary address –Directory systems (CLS, SIS, etc) updated –UCSF Box, and other cloud service accounts updated

8 User Impact 8 Email sent to prior address or new address will be delivered to a single mailbox – No Impact Loss of identity and ‘branding’ associated with domain suffixes on outgoing mail – Impact Variable Individuals may want to update business cards and other print collateral – Impact Low to Moderate Individuals external to UCSF may notice their address books have populated multiple entries for UCSF correspondents – Impact Low Individuals reassigned addresses like first.last2@ucsf.edu, first.last3@ucsf.edu, etc. as their primary address due to name collisions may be dissatisfied with the outcome – Impact Variable

9 User Impact 9 Custom inbox rules built manually from email addresses rather than the global address list will need updating – Impact Low Users may forget that they used their previous address for registrations on external websites – Impact Variable Business processes that query Active Directory for addresses matching @department.ucsf.edu (sub- optimal choice, but may exist) will no longer work – Impact Unknown Ability to send to external Listservs that restrict input to validated addresses will be interrupted until Listserv account is updated with new address – Impact Moderate

10 Alternate Email Servers 10 There is no requirement that members of the UCSF community use the enterprise Exchange server A small number of units continue to operate independent email servers Suggestion for provisioning / cloud integration for this population: –Create first.last@ucsf.edu account as with other new hires –Existence of account will facilitate integrations that need an @ucsf.edu address, even if email function not utilized –Inform account owner that only their @ucsf.edu address should be used for authenticating to campus-wide and integrated services

11 11 DomainAccounts ucsfmedicalcenter.org9381 anesthesia.ucsf.edu529 peds.ucsf.edu481 obgyn.ucsf.edu447 medsfgh.ucsf.edu416 medicine.ucsf.edu388 orthosurg.ucsf.edu282.. dentistry.ucsf.edu79.. ccrc.ucsf.edu1 chanoff.ucsf.edu1 ebinet.ucsf.edu1 clinlab.ucsfmedctr.org1 uap.ucsf.edu1 Alternate Email Domain Statistics

12 Visual Impact of Email Domain – Mac Mail 12 Example from Mac mail client of a message addressed to recipients in four unique email domains. The domain identity of the recipients is not visible in the user interface

13 Visual Impact of Email Domain – Outlook on Windows 13 Same example using the Outlook email client on a Windows computer

14 Visual Impact of Email Domain – Outlook Web Access on Windows 14 Same example with Outlook Web Access (OWA) in a Firefox browser window

15 Visual Impact of Email Domain – IOS 15 Corresponding example on an iPhone None of the clients surveyed displayed the recipient’s email domain under normal operation

16 Recent Integration Challenges 16 UCSF Box –Box expected a single primary domain –Two UCSF staff members a month resolving complication, delaying the implementation Cisco Unified Communications (new phone solution) –Unable to build Uniform Resource Identifier (URI – analogous to internal phone number) from primary email address because they require single domain –Ad hoc heuristics are in development to pick ‘correct’ @ucsf.edu address from among multiple candidate secondary addresses

17 Recent Integration Challenges 17 DocuSign –Reached internal character limit processing list of UCSF domains during authentication process –Domains through ‘larc.ucsf.edu’ work, all domains after ‘legal.ucsf.edu’ fail –Issue still unresolved as of 1/31

18 UCSF Box Integration 18 Definition of ‘Your Company’ is almost comically complex

19 Approval Process 19 9/26/13 – Endorsed by CTA Identity and Access Management Subcommittee 12/12/13 – Endorsed by Committee on Technology and Architecture 12/13/13 – Endorsed by Committee on Business Technology 2/6/14 – Endorsed by IT Governance Steering Committee

20 Community Input to Date 20 Presented to School of Medicine Clinical Chairs Email distribution to School of Medicine MSO list Presented to IT-Forum Vetted with School of Nursing Leadership Vetted with School of Pharmacy Leadership -Vetting with School of Dentistry in progress -Vetting with Academic Senate in progress

Download ppt "Email Identity Standard Proposal February 2014 Committee on Technology & Architecture Subcommittee on Identity and Access Management."

Similar presentations

1 Capability Set - Bullet. 2 Common Community Problems Too Much Information –Institutions have to SPAM their faculty and students –Too many online sources.

1 Capability Set - Bullet. 2 Common Community Problems Too Much Information –Institutions have to SPAM their faculty and students –Too many online sources.
UTILIZING WITH ITA. offers an entire suite of benefits for you and your students. You can also set up s for the purpose.

UTILIZING WITH ITA. offers an entire suite of benefits for you and your students. You can also set up s for the purpose.
Reinventing Email using REST. Anything addressable by a URI is called a resource GET, PUT, POST, DELETE WebDAV (MOVE, LOCK)

Reinventing using REST. Anything addressable by a URI is called a resource GET, PUT, POST, DELETE WebDAV (MOVE, LOCK)
Collaboration and Unified E-Mail Dennis Schmidt, Director, OIS.

Collaboration and Unified Dennis Schmidt, Director, OIS.
Cross Platform Single Sign On using client certificates Emmanuel Ormancey, Alberto Pace Internet Services group CERN, Information Technology department.

Cross Platform Single Sign On using client certificates Emmanuel Ormancey, Alberto Pace Internet Services group CERN, Information Technology department.
Information Resources Management January 16, 2001.

Information Resources Management January 16, 2001.
Kantara: From IRM to Context. The World of Access Keeps Expanding App sourcing and hosting User populations App access channels SasS apps Apps in public.

Kantara: From IRM to Context. The World of Access Keeps Expanding App sourcing and hosting User populations App access channels SasS apps Apps in public.
© 2006 Cisco Systems, Inc. All rights reserved. CUDN v1.1—4-1 Migrating from Voice Mail to Unified Messaging Migrating Voice Mail to Unified Messaging.

© 2006 Cisco Systems, Inc. All rights reserved. CUDN v1.1—4-1 Migrating from Voice Mail to Unified Messaging Migrating Voice Mail to Unified Messaging.
GETS Transformation Kick Off Active Directory eMail and Blackberry Migration Firewall and Network Changes 04/21/2010 1.

GETS Transformation Kick Off Active Directory and Blackberry Migration Firewall and Network Changes 04/21/
1. Failure is when users do not feel they get what they paid for. 2. Failure is when the overall organization fails to adopt the solution.

1. Failure is when users do not feel they get what they paid for. 2. Failure is when the overall organization fails to adopt the solution.
Internet Networking Spring 2006 Tutorial 12 Web Caching Protocols ICP, CARP.

Internet Networking Spring 2006 Tutorial 12 Web Caching Protocols ICP, CARP.
6.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.

6.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.
Staff Computer Training Exchange 2003: More User Friendly Vicki Hecht Cherry Delaney ITaP Luncheon October 14, 2003.

Staff Computer Training Exchange 2003: More User Friendly Vicki Hecht Cherry Delaney ITaP Luncheon October 14, 2003.
Satzinger, Jackson, and Burd Object-Orieneted Analysis & Design

Satzinger, Jackson, and Burd Object-Orieneted Analysis & Design
Exchange server 2003. Mail system Four components Mail user agent (MUA) to read and compose mail Mail transport agent (MTA) route messages Delivery agent.

Exchange server Mail system Four components Mail user agent (MUA) to read and compose mail Mail transport agent (MTA) route messages Delivery agent.
PENN Community Project SUG Presentation April 8, 2002.

PENN Community Project SUG Presentation April 8, 2002.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 7: Planning a DNS Strategy.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 7: Planning a DNS Strategy.
1 No More Paper, No More Stamps: Targeted myWSU Communications Jack Alilunas, Lavon Frazier October 20, 2004.

1 No More Paper, No More Stamps: Targeted myWSU Communications Jack Alilunas, Lavon Frazier October 20, 2004.
Introduction to the Secure SMTP Server service. Secure SMTP server is a secure, reliable SMTP mail relay server for your outgoing mail. Secure SMTP service.

Introduction to the Secure SMTP Server service. Secure SMTP server is a secure, reliable SMTP mail relay server for your outgoing mail. Secure SMTP service.
Pro Exchange SPAM Filter An Exchange 2000 based spam filtering solution.

Pro Exchange SPAM Filter An Exchange 2000 based spam filtering solution.

Similar presentations

Ads by Google