Download presentation
Presentation is loading. Please wait.
Published byEugenia Blankenship Modified over 9 years ago
1
3 Nov 2003 A. Vandenberg © Second NMI Integration Testbed Workshop on Experiences in Middleware Deployment, Anaheim, CA 1 NMI R3 Enterprise Directory Components Overview Art Vandenberg Director, Advanced Campus Services Georgia State University avandenberg@gsu.edu “Copyright Art Vandenberg 2003. This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial, educational purposes, provided that this copyright statement appears on the reproduced materials and notice is given that the copying is by permission of the author. To disseminate otherwise or to republish requires written permission from the author.”
2
3 Nov 2003 A. Vandenberg © Second NMI Integration Testbed Workshop on Experiences in Middleware Deployment, Anaheim, CA 2 Types of components Enterprise and Desktop Integration Technologies (EDIT) –http://www.nsf-middleware.org/NMIR3/components.asphttp://www.nsf-middleware.org/NMIR3/components.asp Conventions & Best Practices –Guidelines & recommendations Directory schema –Interoperation (intra & inter-campus) Enterprise architecture –Designing scaleable infrastructure Services and policy –Tools & tips Note: components may vary between release sets
3
3 Nov 2003 A. Vandenberg © Second NMI Integration Testbed Workshop on Experiences in Middleware Deployment, Anaheim, CA 3 Conventions & Best Practices LDAP Recipe –Directory tree design, access control, attributes, management –Naming, groups, email services Metadirectory Practices for Enterprise Directories in HE –Definitions, examples, identities, authN/authZ –Provisioning & synchronization Practices in Directory Groups –Groups: terminology, concepts, approaches –Naming, group math, managing, applications Enterprise Directory Implementation Roadmap –Policy/Technical track: Plan, Design, Business/Data Flow, Implement
4
3 Nov 2003 A. Vandenberg © Second NMI Integration Testbed Workshop on Experiences in Middleware Deployment, Anaheim, CA 4 Directory Schema The Idea: standards enable interoperation, so the definition of schemas for higher education is a foundational element eduPerson –core objects for higher ed persons eduOrg –model for organizational objects commObject (ITU standard H.350) –videoconferencing & VoIP objects
5
3 Nov 2003 A. Vandenberg © Second NMI Integration Testbed Workshop on Experiences in Middleware Deployment, Anaheim, CA 5 Enterprise architecture Shibboleth Architecture –Technical & policy architecture for secure access to web resources –Privacy preserving emphasis –Federated model for authentication & authorization SAGE (Service for Authorized Group Editing) (Draft) –Group membership determination is important for Authentication Authorization for services Cf: project groups, functional groups, Email groups –Initial specification of functional tool to manage groups
6
3 Nov 2003 A. Vandenberg © Second NMI Integration Testbed Workshop on Experiences in Middleware Deployment, Anaheim, CA 6 Services LDAP Analyzer –http://middleware.internet2.edu/dir/http://middleware.internet2.edu/dir/ –Schema checker, index analysis –eduPerson, eduOrg (various versions) –inetOrgPerson schema check –Grid Laboratory Universal Environment (GLUE) schema for Globus Toolkit TM –Check various LDAP setup configs
7
3 Nov 2003 A. Vandenberg © Second NMI Integration Testbed Workshop on Experiences in Middleware Deployment, Anaheim, CA 7 Q & A Q: “Do I have to be a NMI Integration Testbed member to use these?” A: No, many sites are using these components to establish their enterprise directory infrastructure. Q: “Where can I learn more?” A: Actually, you’re in the right place… more follows.
8
Second NMI Integration Testbed Workshop on Experiences in Middleware Deployment Anaheim, CA Monday November 3, 2003 8:30 am – 5:00 pm
Similar presentations
© 2024 SlidePlayer.com. Inc.
All rights reserved.