SlideShare uma empresa Scribd logo

Update on Institutional Identity Management Priorities at SFU

Transferir como PPT, PDF
Jeremy Rosenberg
Jeremy Rosenberg

The document summarizes current and planned identity and access management projects at Simon Fraser University. It discusses upgrading the central authentication system to a new version, implementing API access control using CAS and OAuth, integrating alumni accounts back into the main identity system, rearchitecting group management using Grouper, and introducing message-oriented middleware using Java Message Service and Apache Camel to improve communication between systems. This will help modernize SFU's identity management infrastructure.

Tecnologia
1 de 21
SFU Identity Management Current and Planned Projects BCNET 2012
• • • • • • • SFU IdAM Overview InCommon Best Practices Analysis CAS Upgrades API Access Control Alumni Account Integration Group Management Re-architecture Identity Messaging Re-architecture About this Presentation BCNET 2012
SFU User Authentication Services AUTHENTICATION CLIENTS WIRELESS WEB APPS APPLICATIONS VOIP IIS APPS / TERM SERVICES WINDOWS LABS/ WORKSTATIONS MAC LABS UNIX HOSTS (EDUROAM) SFU CAS IMPLEMENTATION AUTHENTICATION SERVICES Central Authentication Server SFU RADIATOR SERVER RADIUS web sign-on SFU LDAP SERVERS SFU WINDOWS INFRASTRUCTURE LDAP DIRECTORY ACTIVE DIRECTORY FEDERATED AUTHENTICATION SFU SUN SERVERS EDUPASS.CA LOGINS SFU ACCOUNT SYSTEM /P AS SW D AMAINT ACCOUNTS Authentication Services BCNET 2012 ACCT / PASS WD CT EXTERNAL USERS AC ACCOUNT REGISTRY AND PROVISIONING account / password verification AC C multi-campus wireless authentication ASS T/P Shibboleth WD NIS local account / password provisioning
SFU User Authorization Services PeopleSoft Silo ACCESS ENFORCEMENT WEBCT LON CAPA WEB APPLICATIONS ARCS query AWSOME SFU LDAP SERVERS Active Directory Groups LDAP EduPerson Affiliations accounts, affiliations group membership MAILLIST2 group membership Course & Group Control Lists accounts, affiliations, enrollment PeopleSoft Role Data Stores AMAINT courses to Amaint Persons & Affiliations accounts, affiliations AFFILIATION TYPES affiliations SPONSORED ACCOUNTS FACULTY Authorization Services BCNET 2012 PeopleSoft Access Control accounts,affiliations PRIVILEGE & ATTRIBUTE REGISTRIES EXTERNAL ACCOUNTS PEOPLESOFT APPLICATIONS LDAP Bind SFU WINDOWS INFRASTRUCTURE Amaint SOAP Server Application Access Control Application Privileges, Roles & Users APPLICATIONS Web Services query DATA DISTRIBUTION & PROVISIONING ARCS MANAGER IIS APPS / TERM SERVICES STAFF STUDENTS & COURSES
• SFU IdAM vs Bronze Assurance Requirements • Resistance to Guessing Authentication Secret • Protected Authentication Secrets • Resist Eavesdropper • Identity Record Qualification InCommon Bronze Analysis BCNET 2012
• CAS Upgrades • Upgrading from 3.3 to 3.4 • Provides SAML Support • Running on vanilla tomcat Jasig CAS BCNET 2012
• API Access Control • REST APIs for public institutional data • CAS Integration • OAuth proof of concept API Access Control BCNET 2012
• Alumni Account Integration • Legacy system maintains a separate LDAP server • All users now keep a login only account • Merging alumni identity back into main account • Keep @sfu.ca forwarding for alumni Alumni Account Integration BCNET 2012
Current Infrastructure Alumni Email Handler Alumni Office @alumni.sfu.ca aliases isAlumni isAlumni AEF Amaint Alumni Credentials All Credentials Alumni LDAP AD All Credentials LDAP External Address SOAP Call Radius CAS Login SIMS Alumni Account Integration BCNET 2012
Proposed Infrastructure Alumni Office Alumni Email Handler isAlumni AEF @alumni.sfu.ca aliases isAlumni Amaint External Email All All Credentials Credentials AD LDAP CAS Radius Login External Address SOAP Call SIMS Alumni Account Integration BCNET 2012
• Group Management Re-architecture • Installing Grouper 2.0 ( http://internet2.edu/grouper/) • Decoupling Maillist from Group Management • Creating permission management opportunities • New LDAP Groups Structure (coming soon) Grouper BCNET 2012
Grouper BCNET 2012
• Permission Management • Grouper provided • Decouple Provisioning from permissions • An account doesn’t do anything by default • Permissions are added as assured Permission Management BCNET 2012
Introducing JMS into the middleware layer JMS at SFU BCNET 2012
• Meta-directory, Amaint, receives data from PS systems, creates computing accounts • Accounts and changes pushed to LDAP, AD, WebCT, Zimbra via in-house “update daemon” • Desire to move to modern standards-based mechanism to communicate changes Background BCNET 2012
• Java Messaging Services – but not limited to Java applications • A standard for passing messages between applications in a loosely-coupled, asynchronous manner • Can involve brokers, for queuing messages, and routers, for doing sophisticated handling of messages What is JMS? BCNET 2012
• Apache ActiveMQ as Message Broker – Store and forward messages – Persistent storage across outages – Support for clustering and failover • Apache Camel as Message Router - Huge built-in library of endpoints and functions supported for processing messages - Packaged as a library that can be added to an existing App (such as ActiveMQ) Full-Featured Open Source Apps BCNET 2012
Apache ActiveMQ BCNET 2012
Apache Camel Camel Integration BCNET 2012
Amaint Amaint XML N SO J XML Amaint Amaint ActiveMQ ActiveMQ Camel Camel Camel Camel XML XML Grouper Grouper Phase 1 implementation BCNET 2012 LDAP Updater Updater AD WebCT
• • • • • New LMS integration More Event-driven communications Syslog into JMS (e.g. sign-in events) Workflow into Camel PS Integration The Future BCNET 2012

Recomendados

WSO2 in Action
WSO2 in ActionWSO2 in Action
WSO2 in ActionWSO2
 
Windows Small Business Server 2011 Nasıl Kullanılır
Windows Small Business Server 2011 Nasıl KullanılırWindows Small Business Server 2011 Nasıl Kullanılır
Windows Small Business Server 2011 Nasıl KullanılırMustafa
 
An Enhanced User Experience for Automobile Purchases with the WSO2 Mobile Ser...
An Enhanced User Experience for Automobile Purchases with the WSO2 Mobile Ser...An Enhanced User Experience for Automobile Purchases with the WSO2 Mobile Ser...
An Enhanced User Experience for Automobile Purchases with the WSO2 Mobile Ser...WSO2
 
Advanced Directory Services Windows Server 2012
Advanced Directory Services Windows Server 2012Advanced Directory Services Windows Server 2012
Advanced Directory Services Windows Server 2012Виталий Стародубцев
 
Iplanet
IplanetIplanet
IplanetRoshan Karunarathna
 
Us sbsc aurora presentation
Us sbsc aurora presentationUs sbsc aurora presentation
Us sbsc aurora presentationRick Bahl
 
WSO2 Mashups and BPM
WSO2 Mashups and BPMWSO2 Mashups and BPM
WSO2 Mashups and BPMWSO2
 
[WSO2Con EU 2017] Ballerina Connectors for Seamless Integration
[WSO2Con EU 2017] Ballerina Connectors for Seamless Integration[WSO2Con EU 2017] Ballerina Connectors for Seamless Integration
[WSO2Con EU 2017] Ballerina Connectors for Seamless IntegrationWSO2
 

Recomendados

WSO2 in Action
WSO2 in ActionWSO2 in Action
WSO2 in ActionWSO2
 
Windows Small Business Server 2011 Nasıl Kullanılır
Windows Small Business Server 2011 Nasıl KullanılırWindows Small Business Server 2011 Nasıl Kullanılır
Windows Small Business Server 2011 Nasıl KullanılırMustafa
 
An Enhanced User Experience for Automobile Purchases with the WSO2 Mobile Ser...
An Enhanced User Experience for Automobile Purchases with the WSO2 Mobile Ser...An Enhanced User Experience for Automobile Purchases with the WSO2 Mobile Ser...
An Enhanced User Experience for Automobile Purchases with the WSO2 Mobile Ser...WSO2
 
Advanced Directory Services Windows Server 2012
Advanced Directory Services Windows Server 2012Advanced Directory Services Windows Server 2012
Advanced Directory Services Windows Server 2012Виталий Стародубцев
 
Iplanet
IplanetIplanet
IplanetRoshan Karunarathna
 
Us sbsc aurora presentation
Us sbsc aurora presentationUs sbsc aurora presentation
Us sbsc aurora presentationRick Bahl
 
WSO2 Mashups and BPM
WSO2 Mashups and BPMWSO2 Mashups and BPM
WSO2 Mashups and BPMWSO2
 
[WSO2Con EU 2017] Ballerina Connectors for Seamless Integration
[WSO2Con EU 2017] Ballerina Connectors for Seamless Integration[WSO2Con EU 2017] Ballerina Connectors for Seamless Integration
[WSO2Con EU 2017] Ballerina Connectors for Seamless IntegrationWSO2
 
Enterprise Use Case - Selecting an Enterprise Service Bus
Enterprise Use Case - Selecting an Enterprise Service Bus Enterprise Use Case - Selecting an Enterprise Service Bus
Enterprise Use Case - Selecting an Enterprise Service Bus WSO2
 
Identity Management in SharePoint 2013
Identity Management in SharePoint 2013Identity Management in SharePoint 2013
Identity Management in SharePoint 2013SPC Adriatics
 
Quarterly WSO2 Platform Update Webinar - Q1 2016
Quarterly WSO2 Platform Update Webinar - Q1 2016Quarterly WSO2 Platform Update Webinar - Q1 2016
Quarterly WSO2 Platform Update Webinar - Q1 2016WSO2
 
2 Magma Introduction
2 Magma Introduction2 Magma Introduction
2 Magma Introductionvegamario
 
Session 3c The SF SaaS Framework
Session 3c The SF SaaS FrameworkSession 3c The SF SaaS Framework
Session 3c The SF SaaS FrameworkCode Mastery
 
Bridge SPE: An Introduction
Bridge SPE: An IntroductionBridge SPE: An Introduction
Bridge SPE: An IntroductionForgeRock
 
BI FirstBank
BI FirstBank BI FirstBank
BI FirstBank Actuate Corporation
 
Ad fs
Ad fsAd fs
Ad fsIván Sanchez Vera
 
Mobile Web Network
Mobile Web NetworkMobile Web Network
Mobile Web Networkchenjennan
 
Intorduction to Datapower
Intorduction to DatapowerIntorduction to Datapower
Intorduction to DatapowerShilpin Pvt. Ltd.
 
WSO2 Year End Tech Update 2012
WSO2 Year End Tech Update 2012WSO2 Year End Tech Update 2012
WSO2 Year End Tech Update 2012WSO2
 
Webcenter Portlal training...
Webcenter Portlal training...Webcenter Portlal training...
Webcenter Portlal training...Vinay Kumar
 
Feature List
Feature ListFeature List
Feature ListAleksandar Pavic
 
Barracuda web application_firewall_wp_advantage
Barracuda web application_firewall_wp_advantageBarracuda web application_firewall_wp_advantage
Barracuda web application_firewall_wp_advantageINSPIRIT BRASIL
 
FoxT BoKS ServerControl Full Specifications Document
FoxT BoKS ServerControl Full Specifications DocumentFoxT BoKS ServerControl Full Specifications Document
FoxT BoKS ServerControl Full Specifications DocumentRyan Gallavin
 
WSO2Con2011: Using WSO2 ESB with SAP ERP (Retail)
WSO2Con2011: Using WSO2 ESB with SAP ERP (Retail)WSO2Con2011: Using WSO2 ESB with SAP ERP (Retail)
WSO2Con2011: Using WSO2 ESB with SAP ERP (Retail)WSO2
 
Keynote-Service Orientation – Why is it good for your business
Keynote-Service Orientation – Why is it good for your businessKeynote-Service Orientation – Why is it good for your business
Keynote-Service Orientation – Why is it good for your businessWSO2
 
Using a private cloud to automate and govern enterprise development
Using a private cloud to automate and govern enterprise developmentUsing a private cloud to automate and govern enterprise development
Using a private cloud to automate and govern enterprise developmentWSO2
 
SOA - Unit 1 - Introduction to SOA with Web Services
SOA - Unit 1 - Introduction to SOA with Web ServicesSOA - Unit 1 - Introduction to SOA with Web Services
SOA - Unit 1 - Introduction to SOA with Web Serviceshamsa nandhini
 
Creating an Ecosystem Platform with Vertical PaaS
Creating an Ecosystem Platform with Vertical PaaSCreating an Ecosystem Platform with Vertical PaaS
Creating an Ecosystem Platform with Vertical PaaSWSO2
 
Zhaojinbiao self introduction
Zhaojinbiao self introductionZhaojinbiao self introduction
Zhaojinbiao self introductionzhaojinbiao
 
Aperitive festive
Aperitive festiveAperitive festive
Aperitive festiveRalu Toia
 

Mais conteúdo relacionado

Mais procurados

Enterprise Use Case - Selecting an Enterprise Service Bus
Enterprise Use Case - Selecting an Enterprise Service Bus Enterprise Use Case - Selecting an Enterprise Service Bus
Enterprise Use Case - Selecting an Enterprise Service Bus WSO2
 
Identity Management in SharePoint 2013
Identity Management in SharePoint 2013Identity Management in SharePoint 2013
Identity Management in SharePoint 2013SPC Adriatics
 
Quarterly WSO2 Platform Update Webinar - Q1 2016
Quarterly WSO2 Platform Update Webinar - Q1 2016Quarterly WSO2 Platform Update Webinar - Q1 2016
Quarterly WSO2 Platform Update Webinar - Q1 2016WSO2
 
2 Magma Introduction
2 Magma Introduction2 Magma Introduction
2 Magma Introductionvegamario
 
Session 3c The SF SaaS Framework
Session 3c The SF SaaS FrameworkSession 3c The SF SaaS Framework
Session 3c The SF SaaS FrameworkCode Mastery
 
Bridge SPE: An Introduction
Bridge SPE: An IntroductionBridge SPE: An Introduction
Bridge SPE: An IntroductionForgeRock
 
Mobile Web Network
Mobile Web NetworkMobile Web Network
Mobile Web Networkchenjennan
 
WSO2 Year End Tech Update 2012
WSO2 Year End Tech Update 2012WSO2 Year End Tech Update 2012
WSO2 Year End Tech Update 2012WSO2
 
Webcenter Portlal training...
Webcenter Portlal training...Webcenter Portlal training...
Webcenter Portlal training...Vinay Kumar
 
Barracuda web application_firewall_wp_advantage
Barracuda web application_firewall_wp_advantageBarracuda web application_firewall_wp_advantage
Barracuda web application_firewall_wp_advantageINSPIRIT BRASIL
 
FoxT BoKS ServerControl Full Specifications Document
FoxT BoKS ServerControl Full Specifications DocumentFoxT BoKS ServerControl Full Specifications Document
FoxT BoKS ServerControl Full Specifications DocumentRyan Gallavin
 
WSO2Con2011: Using WSO2 ESB with SAP ERP (Retail)
WSO2Con2011: Using WSO2 ESB with SAP ERP (Retail)WSO2Con2011: Using WSO2 ESB with SAP ERP (Retail)
WSO2Con2011: Using WSO2 ESB with SAP ERP (Retail)WSO2
 
Keynote-Service Orientation – Why is it good for your business
Keynote-Service Orientation – Why is it good for your businessKeynote-Service Orientation – Why is it good for your business
Keynote-Service Orientation – Why is it good for your businessWSO2
 
Using a private cloud to automate and govern enterprise development
Using a private cloud to automate and govern enterprise developmentUsing a private cloud to automate and govern enterprise development
Using a private cloud to automate and govern enterprise developmentWSO2
 
SOA - Unit 1 - Introduction to SOA with Web Services
SOA - Unit 1 - Introduction to SOA with Web ServicesSOA - Unit 1 - Introduction to SOA with Web Services
SOA - Unit 1 - Introduction to SOA with Web Serviceshamsa nandhini
 
Creating an Ecosystem Platform with Vertical PaaS
Creating an Ecosystem Platform with Vertical PaaSCreating an Ecosystem Platform with Vertical PaaS
Creating an Ecosystem Platform with Vertical PaaSWSO2
 

Mais procurados (20)

Enterprise Use Case - Selecting an Enterprise Service Bus
Enterprise Use Case - Selecting an Enterprise Service Bus Enterprise Use Case - Selecting an Enterprise Service Bus
Enterprise Use Case - Selecting an Enterprise Service Bus
 
Identity Management in SharePoint 2013
Identity Management in SharePoint 2013Identity Management in SharePoint 2013
Identity Management in SharePoint 2013
 
Quarterly WSO2 Platform Update Webinar - Q1 2016
Quarterly WSO2 Platform Update Webinar - Q1 2016Quarterly WSO2 Platform Update Webinar - Q1 2016
Quarterly WSO2 Platform Update Webinar - Q1 2016
 
2 Magma Introduction
2 Magma Introduction2 Magma Introduction
2 Magma Introduction
 
Session 3c The SF SaaS Framework
Session 3c The SF SaaS FrameworkSession 3c The SF SaaS Framework
Session 3c The SF SaaS Framework
 
Bridge SPE: An Introduction
Bridge SPE: An IntroductionBridge SPE: An Introduction
Bridge SPE: An Introduction
 
BI FirstBank
BI FirstBank BI FirstBank
BI FirstBank
 
Ad fs
Ad fsAd fs
Ad fs
 
Mobile Web Network
Mobile Web NetworkMobile Web Network
Mobile Web Network
 
Intorduction to Datapower
Intorduction to DatapowerIntorduction to Datapower
Intorduction to Datapower
 
WSO2 Year End Tech Update 2012
WSO2 Year End Tech Update 2012WSO2 Year End Tech Update 2012
WSO2 Year End Tech Update 2012
 
Webcenter Portlal training...
Webcenter Portlal training...Webcenter Portlal training...
Webcenter Portlal training...
 
Feature List
Feature ListFeature List
Feature List
 
Barracuda web application_firewall_wp_advantage
Barracuda web application_firewall_wp_advantageBarracuda web application_firewall_wp_advantage
Barracuda web application_firewall_wp_advantage
 
FoxT BoKS ServerControl Full Specifications Document
FoxT BoKS ServerControl Full Specifications DocumentFoxT BoKS ServerControl Full Specifications Document
FoxT BoKS ServerControl Full Specifications Document
 
WSO2Con2011: Using WSO2 ESB with SAP ERP (Retail)
WSO2Con2011: Using WSO2 ESB with SAP ERP (Retail)WSO2Con2011: Using WSO2 ESB with SAP ERP (Retail)
WSO2Con2011: Using WSO2 ESB with SAP ERP (Retail)
 
Keynote-Service Orientation – Why is it good for your business
Keynote-Service Orientation – Why is it good for your businessKeynote-Service Orientation – Why is it good for your business
Keynote-Service Orientation – Why is it good for your business
 
Using a private cloud to automate and govern enterprise development
Using a private cloud to automate and govern enterprise developmentUsing a private cloud to automate and govern enterprise development
Using a private cloud to automate and govern enterprise development
 
SOA - Unit 1 - Introduction to SOA with Web Services
SOA - Unit 1 - Introduction to SOA with Web ServicesSOA - Unit 1 - Introduction to SOA with Web Services
SOA - Unit 1 - Introduction to SOA with Web Services
 
Creating an Ecosystem Platform with Vertical PaaS
Creating an Ecosystem Platform with Vertical PaaSCreating an Ecosystem Platform with Vertical PaaS
Creating an Ecosystem Platform with Vertical PaaS
 

Destaque

Zhaojinbiao self introduction
Zhaojinbiao self introductionZhaojinbiao self introduction
Zhaojinbiao self introductionzhaojinbiao
 
Aperitive festive
Aperitive festiveAperitive festive
Aperitive festiveRalu Toia
 
London web perfug_performancefocused_devops_feb2014
London web perfug_performancefocused_devops_feb2014London web perfug_performancefocused_devops_feb2014
London web perfug_performancefocused_devops_feb2014Andreas Grabner
 
Distributed WPA PSK security audit
Distributed WPA PSK security auditDistributed WPA PSK security audit
Distributed WPA PSK security auditOpenFest team
 
6 evaluation product scs environmental services chia
6 evaluation product scs environmental services chia6 evaluation product scs environmental services chia
6 evaluation product scs environmental services chiamvvillanueva720
 
ASERL Collaborative Federal Depository Program: Innovating within a Regulator...
ASERL Collaborative Federal Depository Program: Innovating within a Regulator...ASERL Collaborative Federal Depository Program: Innovating within a Regulator...
ASERL Collaborative Federal Depository Program: Innovating within a Regulator...ccole-bennett
 
いつものことご紹介
いつものことご紹介いつものことご紹介
いつものことご紹介Shinichi Yamao
 
Nascent Financial Services
Nascent Financial ServicesNascent Financial Services
Nascent Financial Servicesnascentfs
 
Konservasi tanah dalam arti luas adalah penempatan tanah pada cara penggunaan...
Konservasi tanah dalam arti luas adalah penempatan tanah pada cara penggunaan...Konservasi tanah dalam arti luas adalah penempatan tanah pada cara penggunaan...
Konservasi tanah dalam arti luas adalah penempatan tanah pada cara penggunaan...Jeneng Omega
 
Daily routines
Daily routinesDaily routines
Daily routinesDigna Rita
 
3 Major Trends in Healthcare: Social, Mobile and Games
3 Major Trends in Healthcare: Social, Mobile and Games3 Major Trends in Healthcare: Social, Mobile and Games
3 Major Trends in Healthcare: Social, Mobile and GamesQubop Inc.
 
OpenRegistry at Simon Fraser University
OpenRegistry at Simon Fraser UniversityOpenRegistry at Simon Fraser University
OpenRegistry at Simon Fraser UniversityJeremy Rosenberg
 

Destaque (20)

Zhaojinbiao self introduction
Zhaojinbiao self introductionZhaojinbiao self introduction
Zhaojinbiao self introduction
 
Aperitive festive
Aperitive festiveAperitive festive
Aperitive festive
 
London web perfug_performancefocused_devops_feb2014
London web perfug_performancefocused_devops_feb2014London web perfug_performancefocused_devops_feb2014
London web perfug_performancefocused_devops_feb2014
 
Vice President Resume
Vice President ResumeVice President Resume
Vice President Resume
 
Distributed WPA PSK security audit
Distributed WPA PSK security auditDistributed WPA PSK security audit
Distributed WPA PSK security audit
 
6 evaluation product scs environmental services chia
6 evaluation product scs environmental services chia6 evaluation product scs environmental services chia
6 evaluation product scs environmental services chia
 
Fiesta de Disfraces
Fiesta de DisfracesFiesta de Disfraces
Fiesta de Disfraces
 
Fall newsletter-2008
Fall newsletter-2008Fall newsletter-2008
Fall newsletter-2008
 
Tar syndrome group 6
Tar syndrome group 6Tar syndrome group 6
Tar syndrome group 6
 
ASERL Collaborative Federal Depository Program: Innovating within a Regulator...
ASERL Collaborative Federal Depository Program: Innovating within a Regulator...ASERL Collaborative Federal Depository Program: Innovating within a Regulator...
ASERL Collaborative Federal Depository Program: Innovating within a Regulator...
 
Kemungkinan
KemungkinanKemungkinan
Kemungkinan
 
いつものことご紹介
いつものことご紹介いつものことご紹介
いつものことご紹介
 
Nascent Financial Services
Nascent Financial ServicesNascent Financial Services
Nascent Financial Services
 
Konservasi tanah dalam arti luas adalah penempatan tanah pada cara penggunaan...
Konservasi tanah dalam arti luas adalah penempatan tanah pada cara penggunaan...Konservasi tanah dalam arti luas adalah penempatan tanah pada cara penggunaan...
Konservasi tanah dalam arti luas adalah penempatan tanah pada cara penggunaan...
 
Let’s do an extempo!
Let’s do an extempo!Let’s do an extempo!
Let’s do an extempo!
 
Daily routines
Daily routinesDaily routines
Daily routines
 
DIY to CMS
DIY to CMSDIY to CMS
DIY to CMS
 
3 Major Trends in Healthcare: Social, Mobile and Games
3 Major Trends in Healthcare: Social, Mobile and Games3 Major Trends in Healthcare: Social, Mobile and Games
3 Major Trends in Healthcare: Social, Mobile and Games
 
Piano tuner
Piano tunerPiano tuner
Piano tuner
 
OpenRegistry at Simon Fraser University
OpenRegistry at Simon Fraser UniversityOpenRegistry at Simon Fraser University
OpenRegistry at Simon Fraser University
 

Semelhante a Update on Institutional Identity Management Priorities at SFU

Building Private Iaas Cloud
Building Private Iaas CloudBuilding Private Iaas Cloud
Building Private Iaas CloudLai Yoong Seng
 
CV-Kumar_TAM
CV-Kumar_TAMCV-Kumar_TAM
CV-Kumar_TAMKumar R
 
Deploying Microsoft System Center in Days
Deploying Microsoft System Center in DaysDeploying Microsoft System Center in Days
Deploying Microsoft System Center in DaysPowerONPlatforms
 
Microsoft System Center 2012 R2 Overview - Presented by Atidan
Microsoft System Center 2012 R2 Overview - Presented by AtidanMicrosoft System Center 2012 R2 Overview - Presented by Atidan
Microsoft System Center 2012 R2 Overview - Presented by AtidanDavid J Rosenthal
 
Cloud native microservices for systems and applications ieee rev2
Cloud native microservices for systems and applications ieee rev2Cloud native microservices for systems and applications ieee rev2
Cloud native microservices for systems and applications ieee rev2Prem Sankar Gopannan
 
[WSO2Con EU 2017] Microservice Architecture (MSA) and Integration Microservices
[WSO2Con EU 2017] Microservice Architecture (MSA) and Integration Microservices[WSO2Con EU 2017] Microservice Architecture (MSA) and Integration Microservices
[WSO2Con EU 2017] Microservice Architecture (MSA) and Integration MicroservicesWSO2
 
Evolution of the IBM Cloud Console: From Monolith to Microservices and Beyond
Evolution of the IBM Cloud Console: From Monolith to Microservices and BeyondEvolution of the IBM Cloud Console: From Monolith to Microservices and Beyond
Evolution of the IBM Cloud Console: From Monolith to Microservices and BeyondTony Erwin
 
Magento 2 overview. Alan Kent
Magento 2 overview. Alan Kent Magento 2 overview. Alan Kent
Magento 2 overview. Alan Kent MeetMagentoNY2014
 
SMEUG 2006 - Project IBIS: ERP at UAE University
SMEUG 2006 - Project IBIS: ERP at UAE UniversitySMEUG 2006 - Project IBIS: ERP at UAE University
SMEUG 2006 - Project IBIS: ERP at UAE UniversityMichael Dobe, Ph.D.
 
Overview Of Microsoft Private Cloud
Overview Of Microsoft Private CloudOverview Of Microsoft Private Cloud
Overview Of Microsoft Private CloudLai Yoong Seng
 
Azure Administration.docx
Azure Administration.docxAzure Administration.docx
Azure Administration.docxFuturepoint13
 
The Essentials of Building Cloud-Based Web Apps with Azure
The Essentials of Building Cloud-Based Web Apps with AzureThe Essentials of Building Cloud-Based Web Apps with Azure
The Essentials of Building Cloud-Based Web Apps with AzureIdo Flatow
 
Gain Insights, Make Decisions, and Take Action Across a Streamlined and Autom...
Gain Insights, Make Decisions, and Take Action Across a Streamlined and Autom...Gain Insights, Make Decisions, and Take Action Across a Streamlined and Autom...
Gain Insights, Make Decisions, and Take Action Across a Streamlined and Autom...Arraya Solutions
 
JavaOne Conference, 2008
JavaOne Conference, 2008JavaOne Conference, 2008
JavaOne Conference, 2008Sean Dawson
 
4163A - What is Web 2.0.ppt
4163A - What is Web 2.0.ppt4163A - What is Web 2.0.ppt
4163A - What is Web 2.0.pptMatthew Perrins
 
A Service Oriented Architecture For Order Processing In The I B M Supp...
A Service Oriented Architecture For Order Processing In The I B M Supp...A Service Oriented Architecture For Order Processing In The I B M Supp...
A Service Oriented Architecture For Order Processing In The I B M Supp...Kirill Osipov
 
AWS Enterprise Summit Netherlands - Creating a Landing Zone
AWS Enterprise Summit Netherlands - Creating a Landing ZoneAWS Enterprise Summit Netherlands - Creating a Landing Zone
AWS Enterprise Summit Netherlands - Creating a Landing ZoneAmazon Web Services
 

Semelhante a Update on Institutional Identity Management Priorities at SFU (20)

Building Private Iaas Cloud
Building Private Iaas CloudBuilding Private Iaas Cloud
Building Private Iaas Cloud
 
CV-Kumar_TAM
CV-Kumar_TAMCV-Kumar_TAM
CV-Kumar_TAM
 
Deploying Microsoft System Center in Days
Deploying Microsoft System Center in DaysDeploying Microsoft System Center in Days
Deploying Microsoft System Center in Days
 
Microsoft System Center 2012 R2 Overview - Presented by Atidan
Microsoft System Center 2012 R2 Overview - Presented by AtidanMicrosoft System Center 2012 R2 Overview - Presented by Atidan
Microsoft System Center 2012 R2 Overview - Presented by Atidan
 
Cloud native microservices for systems and applications ieee rev2
Cloud native microservices for systems and applications ieee rev2Cloud native microservices for systems and applications ieee rev2
Cloud native microservices for systems and applications ieee rev2
 
[WSO2Con EU 2017] Microservice Architecture (MSA) and Integration Microservices
[WSO2Con EU 2017] Microservice Architecture (MSA) and Integration Microservices[WSO2Con EU 2017] Microservice Architecture (MSA) and Integration Microservices
[WSO2Con EU 2017] Microservice Architecture (MSA) and Integration Microservices
 
Evolution of the IBM Cloud Console: From Monolith to Microservices and Beyond
Evolution of the IBM Cloud Console: From Monolith to Microservices and BeyondEvolution of the IBM Cloud Console: From Monolith to Microservices and Beyond
Evolution of the IBM Cloud Console: From Monolith to Microservices and Beyond
 
Magento 2 overview. Alan Kent
Magento 2 overview. Alan Kent Magento 2 overview. Alan Kent
Magento 2 overview. Alan Kent
 
SMEUG 2006 - Project IBIS: ERP at UAE University
SMEUG 2006 - Project IBIS: ERP at UAE UniversitySMEUG 2006 - Project IBIS: ERP at UAE University
SMEUG 2006 - Project IBIS: ERP at UAE University
 
Overview Of Microsoft Private Cloud
Overview Of Microsoft Private CloudOverview Of Microsoft Private Cloud
Overview Of Microsoft Private Cloud
 
Azure Administration.docx
Azure Administration.docxAzure Administration.docx
Azure Administration.docx
 
The Essentials of Building Cloud-Based Web Apps with Azure
The Essentials of Building Cloud-Based Web Apps with AzureThe Essentials of Building Cloud-Based Web Apps with Azure
The Essentials of Building Cloud-Based Web Apps with Azure
 
Gain Insights, Make Decisions, and Take Action Across a Streamlined and Autom...
Gain Insights, Make Decisions, and Take Action Across a Streamlined and Autom...Gain Insights, Make Decisions, and Take Action Across a Streamlined and Autom...
Gain Insights, Make Decisions, and Take Action Across a Streamlined and Autom...
 
Resume
ResumeResume
Resume
 
Resume
ResumeResume
Resume
 
JavaOne Conference, 2008
JavaOne Conference, 2008JavaOne Conference, 2008
JavaOne Conference, 2008
 
4163A - What is Web 2.0.ppt
4163A - What is Web 2.0.ppt4163A - What is Web 2.0.ppt
4163A - What is Web 2.0.ppt
 
SBS 2011 Kullanimi
SBS 2011 KullanimiSBS 2011 Kullanimi
SBS 2011 Kullanimi
 
A Service Oriented Architecture For Order Processing In The I B M Supp...
A Service Oriented Architecture For Order Processing In The I B M Supp...A Service Oriented Architecture For Order Processing In The I B M Supp...
A Service Oriented Architecture For Order Processing In The I B M Supp...
 
AWS Enterprise Summit Netherlands - Creating a Landing Zone
AWS Enterprise Summit Netherlands - Creating a Landing ZoneAWS Enterprise Summit Netherlands - Creating a Landing Zone
AWS Enterprise Summit Netherlands - Creating a Landing Zone
 

Mais de Jeremy Rosenberg

Social Credential Use in CAS
Social Credential Use in CASSocial Credential Use in CAS
Social Credential Use in CASJeremy Rosenberg
 
SFU Identity Management Overview
SFU Identity Management OverviewSFU Identity Management Overview
SFU Identity Management OverviewJeremy Rosenberg
 
Exploring Cloud Credentials for Institutional Use
Exploring Cloud Credentials for Institutional UseExploring Cloud Credentials for Institutional Use
Exploring Cloud Credentials for Institutional UseJeremy Rosenberg
 
Campus Perspectives on OpenRegistry
Campus Perspectives on OpenRegistryCampus Perspectives on OpenRegistry
Campus Perspectives on OpenRegistryJeremy Rosenberg
 
Opening Up Academic Planning Information
Opening Up Academic Planning InformationOpening Up Academic Planning Information
Opening Up Academic Planning InformationJeremy Rosenberg
 

Mais de Jeremy Rosenberg (6)

Social Credential Use in CAS
Social Credential Use in CASSocial Credential Use in CAS
Social Credential Use in CAS
 
SFU Identity Management Overview
SFU Identity Management OverviewSFU Identity Management Overview
SFU Identity Management Overview
 
Exploring Cloud Credentials for Institutional Use
Exploring Cloud Credentials for Institutional UseExploring Cloud Credentials for Institutional Use
Exploring Cloud Credentials for Institutional Use
 
Websurvey
WebsurveyWebsurvey
Websurvey
 
Campus Perspectives on OpenRegistry
Campus Perspectives on OpenRegistryCampus Perspectives on OpenRegistry
Campus Perspectives on OpenRegistry
 
Opening Up Academic Planning Information
Opening Up Academic Planning InformationOpening Up Academic Planning Information
Opening Up Academic Planning Information
 

Último

Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slidespraypatel2
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘RTylerCroy
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationMichael W. Hawkins
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...Martijn de Jong
 
Real Time Object Detection Using Open CV
Real Time Object Detection Using Open CVReal Time Object Detection Using Open CV
Real Time Object Detection Using Open CVKhem
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Scriptwesley chun
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfsudhanshuwaghmare1
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Miguel Araújo
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Servicegiselly40
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUK Journal
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Neo4j
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processorsdebabhi2
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 

Último (20)

Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slides
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 
Real Time Object Detection Using Open CV
Real Time Object Detection Using Open CVReal Time Object Detection Using Open CV
Real Time Object Detection Using Open CV
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 

Update on Institutional Identity Management Priorities at SFU

  • 1. SFU Identity Management Current and Planned Projects BCNET 2012
  • 2. • • • • • • • SFU IdAM Overview InCommon Best Practices Analysis CAS Upgrades API Access Control Alumni Account Integration Group Management Re-architecture Identity Messaging Re-architecture About this Presentation BCNET 2012
  • 3. SFU User Authentication Services AUTHENTICATION CLIENTS WIRELESS WEB APPS APPLICATIONS VOIP IIS APPS / TERM SERVICES WINDOWS LABS/ WORKSTATIONS MAC LABS UNIX HOSTS (EDUROAM) SFU CAS IMPLEMENTATION AUTHENTICATION SERVICES Central Authentication Server SFU RADIATOR SERVER RADIUS web sign-on SFU LDAP SERVERS SFU WINDOWS INFRASTRUCTURE LDAP DIRECTORY ACTIVE DIRECTORY FEDERATED AUTHENTICATION SFU SUN SERVERS EDUPASS.CA LOGINS SFU ACCOUNT SYSTEM /P AS SW D AMAINT ACCOUNTS Authentication Services BCNET 2012 ACCT / PASS WD CT EXTERNAL USERS AC ACCOUNT REGISTRY AND PROVISIONING account / password verification AC C multi-campus wireless authentication ASS T/P Shibboleth WD NIS local account / password provisioning
  • 4. SFU User Authorization Services PeopleSoft Silo ACCESS ENFORCEMENT WEBCT LON CAPA WEB APPLICATIONS ARCS query AWSOME SFU LDAP SERVERS Active Directory Groups LDAP EduPerson Affiliations accounts, affiliations group membership MAILLIST2 group membership Course & Group Control Lists accounts, affiliations, enrollment PeopleSoft Role Data Stores AMAINT courses to Amaint Persons & Affiliations accounts, affiliations AFFILIATION TYPES affiliations SPONSORED ACCOUNTS FACULTY Authorization Services BCNET 2012 PeopleSoft Access Control accounts,affiliations PRIVILEGE & ATTRIBUTE REGISTRIES EXTERNAL ACCOUNTS PEOPLESOFT APPLICATIONS LDAP Bind SFU WINDOWS INFRASTRUCTURE Amaint SOAP Server Application Access Control Application Privileges, Roles & Users APPLICATIONS Web Services query DATA DISTRIBUTION & PROVISIONING ARCS MANAGER IIS APPS / TERM SERVICES STAFF STUDENTS & COURSES
  • 5. • SFU IdAM vs Bronze Assurance Requirements • Resistance to Guessing Authentication Secret • Protected Authentication Secrets • Resist Eavesdropper • Identity Record Qualification InCommon Bronze Analysis BCNET 2012
  • 6. • CAS Upgrades • Upgrading from 3.3 to 3.4 • Provides SAML Support • Running on vanilla tomcat Jasig CAS BCNET 2012
  • 7. • API Access Control • REST APIs for public institutional data • CAS Integration • OAuth proof of concept API Access Control BCNET 2012
  • 8. • Alumni Account Integration • Legacy system maintains a separate LDAP server • All users now keep a login only account • Merging alumni identity back into main account • Keep @sfu.ca forwarding for alumni Alumni Account Integration BCNET 2012
  • 9. Current Infrastructure Alumni Email Handler Alumni Office @alumni.sfu.ca aliases isAlumni isAlumni AEF Amaint Alumni Credentials All Credentials Alumni LDAP AD All Credentials LDAP External Address SOAP Call Radius CAS Login SIMS Alumni Account Integration BCNET 2012
  • 10. Proposed Infrastructure Alumni Office Alumni Email Handler isAlumni AEF @alumni.sfu.ca aliases isAlumni Amaint External Email All All Credentials Credentials AD LDAP CAS Radius Login External Address SOAP Call SIMS Alumni Account Integration BCNET 2012
  • 11. • Group Management Re-architecture • Installing Grouper 2.0 ( http://internet2.edu/grouper/) • Decoupling Maillist from Group Management • Creating permission management opportunities • New LDAP Groups Structure (coming soon) Grouper BCNET 2012
  • 13. • Permission Management • Grouper provided • Decouple Provisioning from permissions • An account doesn’t do anything by default • Permissions are added as assured Permission Management BCNET 2012
  • 14. Introducing JMS into the middleware layer JMS at SFU BCNET 2012
  • 15. • Meta-directory, Amaint, receives data from PS systems, creates computing accounts • Accounts and changes pushed to LDAP, AD, WebCT, Zimbra via in-house “update daemon” • Desire to move to modern standards-based mechanism to communicate changes Background BCNET 2012
  • 16. • Java Messaging Services – but not limited to Java applications • A standard for passing messages between applications in a loosely-coupled, asynchronous manner • Can involve brokers, for queuing messages, and routers, for doing sophisticated handling of messages What is JMS? BCNET 2012
  • 17. • Apache ActiveMQ as Message Broker – Store and forward messages – Persistent storage across outages – Support for clustering and failover • Apache Camel as Message Router - Huge built-in library of endpoints and functions supported for processing messages - Packaged as a library that can be added to an existing App (such as ActiveMQ) Full-Featured Open Source Apps BCNET 2012
  • 21. • • • • • New LMS integration More Event-driven communications Syslog into JMS (e.g. sign-in events) Workflow into Camel PS Integration The Future BCNET 2012

Notas do Editor

  1. Our password checking mechanism does not ensure sufficiently strong passwords No policy covering 3rd-party app authenticating with SFU credentials SFU has some services that do unencrypted logins. SFU does not currently maintain any record of how a given user's identity was verified upon credential creation.