Presentation is loading. Please wait.

Presentation is loading. Please wait.

Identity Management with x- services in Aleph Gerard Bennett, University of Westminster IGeLU – Budapest - Session 11.42 Thursday 3 rd Sept 2015.

Published byAdele Preston Modified over 9 years ago

Similar presentations

Presentation on theme: "Identity Management with x- services in Aleph Gerard Bennett, University of Westminster IGeLU – Budapest - Session 11.42 Thursday 3 rd Sept 2015."— Presentation transcript:

1 Identity Management with x- services in Aleph Gerard Bennett, University of Westminster IGeLU – Budapest - Session 11.42 Thursday 3 rd Sept 2015

2 Overview University of Westminster context Identity Management (IDM) at Westminster Use of IDM to provision Aleph accounts – Version 1 – Version 2 X-service at the heart of this: ‘update-bor’ X-services security Tools for monitoring

3 University of Westminster Central London mainly: Regent; Marylebone; Cavendish and Harrow (15 km north-west) Public university, teaching and research Started in 1837: antecedent institutions Faculties: – Faculty of Science and Technology (Cavendish) – Faculty of Media, Arts and Design (Harrow) – Faculty of Social Sciences and Humanities (Regent) – Faculty of Architecture and the Built Environment (Marylebone) – Westminster Law School (Regent) – Westminster Business School (Marylebone) 20,000+ students; 1000+ staff. User groups, including ‘others’

4 Identity Manager Use of Identity Manager to provision accounts for many systems Authoritative sources feeding an Identity Vault (database + drivers) Identity Vault driver feeds going to many different systems, to create, update and delete account information Functions for both Authentication and Authorisation

5 IDM and Library IDM driver controlling creation, updating and deletion of Aleph users since 2006 A separate IDM driver for Shibboleth attributes also. Sends to Shibboleth IdP Outsourcing of IDM in Spring 2014 Review > Decision to change.

6 Aleph IDM version 1 Two drivers: staff & student Provides data to p-file-20 in plif format Data : z303; z304; z305; z308 Processing stages. Batch files; Intermediary severs; additional processing; PLIF file; p-file- 20 at frequent intervals

7

8 Aleph IDM version 2 1.One driver for staff and students 2.A single update in Identity vault triggers an update in Aleph. 3.Using X-service: update-bor 4.PLIF format 5.Post not Get 6.No scheduling; no batching; no intermediary servers; no p-file-20 post- processing 7.Failures or problems at the level of single transactions not batch files 8.Logging in www server logs /apache logs

9

10 Update-bor https://developers.exlibrisgroup.com/aleph/a pis/Aleph-X-Services/update_bor https://developers.exlibrisgroup.com/aleph/a pis/Aleph-X-Services/update_bor Driver is only sending the specific data for the update / insert etc. Documentation suggests that the whole record, z303 etc, is sent each time. Mandatory fields, but not well-documented

11 request: "/X?op=update- bor&library=WST50&update- flag=Y&xml_full_req= 00 227038 U U 227038 WST50 A 01 227038 2270381 WST50 00 N AC "

12 Example of insert

13 Example of update

14 Example 2 of update

15 Example of deletion

16 X-services security https for transmission of data via x-services between IDM vault and Aleph server-ip-allowed in alephe/tab for restrictions on IPs that can access Aleph via x-server www-x user has permissions on what actions the default x-server user can execute

17 Other considerations Working with a remote IDM supplier Test and live vaults Notion of associating IDM record with Aleph record Migration of users from live vault to test Aleph

18 Tools for monitoring Log monitor checking for errors – Emails of errors detected Real-time monitor of IDM – Aleph interactions Link to monitoring tool Also tool to input xml: Link to XML input toolLink to XML input tool

19 Real-time monitoring tool Display of real-time data from Aleph DB alongside data sent by IDM File column displays data sent Using X-services to retrieve data from Aleph, not SQL Filters: Type of operation; User status; Library; Environment; Errors only, or all transactions Final column: ‘File’ the update-bor request sent

20

21

22

23

24 And finally Questions? Email: g.j.bennett@westminster.ac.ukg.j.bennett@westminster.ac.uk

Download ppt "Identity Management with x- services in Aleph Gerard Bennett, University of Westminster IGeLU – Budapest - Session 11.42 Thursday 3 rd Sept 2015."

Similar presentations

ICIS-NPDES Plugin Design Preview Webinar ICIS-NPDES Full Batch OpenNode2 Plugin Project Presented by Bill Rensmith Windsor Solutions, Inc. 3/15/2012.

ICIS-NPDES Plugin Design Preview Webinar ICIS-NPDES Full Batch OpenNode2 Plugin Project Presented by Bill Rensmith Windsor Solutions, Inc. 3/15/2012.
1 Wolfgang Lierz Staff IT-Services / Network & Security Admin ETH-Bibliothek Zurich Integration Primo-Aleph-PDS-SSO- AAI Wolfgang Lierz / IGeLU 2012 Zurich.

1 Wolfgang Lierz Staff IT-Services / Network & Security Admin ETH-Bibliothek Zurich Integration Primo-Aleph-PDS-SSO- AAI Wolfgang Lierz / IGeLU 2012 Zurich.
TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 22 World Wide Web and HTTP.

TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 22 World Wide Web and HTTP.
ALEPH version 19.01/20.01 Cataloging & Acquisitions/Serials Updates South Dakota Library Network 1200 University, Unit 9672 Spearfish, SD 57799 www.sdln.net.

ALEPH version 19.01/20.01 Cataloging & Acquisitions/Serials Updates South Dakota Library Network 1200 University, Unit 9672 Spearfish, SD
Hidden Features. What will we cover 16 hidden features for Admins Bonus: –2 hidden features for Employers –Live examples!

Hidden Features. What will we cover 16 hidden features for Admins Bonus: –2 hidden features for Employers –Live examples!
Www.quick-software-line.com High Availability for IBM Power i.

High Availability for IBM Power i.
Library Staff Training

Library Staff Training
Presented by the EPA AQS Team. Agenda Introductions Housekeeping/Overview of GoToWebinar Presentation Q& A session – use Question box to submit your questions.

Presented by the EPA AQS Team. Agenda Introductions Housekeeping/Overview of GoToWebinar Presentation Q& A session – use Question box to submit your questions.
Kabel Nathan Stanwicks, Head Circulation and Media Services Department Electronic Reserves Introductory Tutorial for Faculty.

Kabel Nathan Stanwicks, Head Circulation and Media Services Department Electronic Reserves Introductory Tutorial for Faculty.
Web Servers How do our requests for resources on the Internet get handled? Can they be located anywhere? Global?

Web Servers How do our requests for resources on the Internet get handled? Can they be located anywhere? Global?
Report Distribution Report Distribution in PeopleTools 8.4 Doug Ostler & Eric Knapp 7264.

Report Distribution Report Distribution in PeopleTools 8.4 Doug Ostler & Eric Knapp 7264.
How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.

How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.
Check Disk. Disk Defragmenter Using Disk Defragmenter Effectively Run Disk Defragmenter when the computer will receive the least usage. Educate users.

Check Disk. Disk Defragmenter Using Disk Defragmenter Effectively Run Disk Defragmenter when the computer will receive the least usage. Educate users.
Pro Exchange SPAM Filter An Exchange 2000 based spam filtering solution.

Pro Exchange SPAM Filter An Exchange 2000 based spam filtering solution.
IS 4506 Database Connectivity.  Overview Two and Three-Tier C/S Architecture ASP Database Connection ODBC - Connection to DBMS Overview of transaction.

IS 4506 Database Connectivity.  Overview Two and Three-Tier C/S Architecture ASP Database Connection ODBC - Connection to DBMS Overview of transaction.
Download & Play E-Learning System PROPOSAL draft1.0.

Download & Play E-Learning System PROPOSAL draft1.0.
Authorization Scenarios with Signet RL “Bob” Morgan University of Washington Internet2 Member Meeting, September 2004.

Authorization Scenarios with Signet RL “Bob” Morgan University of Washington Internet2 Member Meeting, September 2004.
1 Web Server Concepts Dr. Awad Khalil Computer Science Department AUC.

1 Web Server Concepts Dr. Awad Khalil Computer Science Department AUC.
Module 14: Configuring Print Resources and Printing Pools.

Module 14: Configuring Print Resources and Printing Pools.
Server tools. Site server tools can be utilised to build, host, track and monitor transactions on a business site. There are a wide range of possibilities.

Server tools. Site server tools can be utilised to build, host, track and monitor transactions on a business site. There are a wide range of possibilities.

Similar presentations

Ads by Google