Presentation is loading. Please wait.

Presentation is loading. Please wait.

© GT/SAPP/USIT University of Oslo, Norway Cerebrum, UoO new UAS Developing a 2 nd generatione of a single user- administration system for University of.

Similar presentations


Presentation on theme: "© GT/SAPP/USIT University of Oslo, Norway Cerebrum, UoO new UAS Developing a 2 nd generatione of a single user- administration system for University of."— Presentation transcript:

1 © GT/SAPP/USIT University of Oslo, Norway Cerebrum, UoO new UAS Developing a 2 nd generatione of a single user- administration system for University of Oslo By Bård H.M. Jakobsen

2 © GT/SAPP/USIT University of Oslo, Norway University of Oslo (UoO), Norway students fac. & staff others! users in one user-management system UREG opened accounts after 15. nov Ca 2000 computers for students –Win*, MacOS (OS9 and OSX), Linux, mm almost end-user computers…

3 © GT/SAPP/USIT University of Oslo, Norway What is an User administration system (BAS) Student registry Student registry Personal registery BAS Persons Users

4 © GT/SAPP/USIT University of Oslo, Norway Ureg2000 FSLT NIS (UiO) NT AD (W2K) Notes ARS Tivoli BOFH Radius UA (Adgangskontroll) PRISS Exim/Mailman NIS (IfI) LDAP LMS (CF)

5 © GT/SAPP/USIT University of Oslo, Norway FEIDE

6 © GT/SAPP/USIT University of Oslo, Norway What is Cerebrum a OpenSource User administration system build by modules around a kernel Written in Python, using Oracle or postgresSQL as backend Sourcecode on Now in alpha-code, pilots running Pre-production in January

7 © GT/SAPP/USIT University of Oslo, Norway User administration system (BAS) Person - unique ID - Name - Address - Affiliation Group - Group ID (GID) - Comment - Members - users - other Groups User - Username (UID) - Password - Mail address - Home dir

8 © GT/SAPP/USIT University of Oslo, Norway User administration system (BAS) Person Affiliation Group User OU

9 © GT/SAPP/USIT University of Oslo, Norway Cerebrum v.s our current system Ureg2000, developed by evolution hard to emigrate to other institutions (FEIDE) new needs at our institutions –LMS –Portals –other services –event-driven updates UoO to get a new HR Cerebrum is TDBtCE

10 © GT/SAPP/USIT University of Oslo, Norway Kernel Person –ID »internal »External »SSN »From other sources –Name OU –Name/ID –Structure

11 © GT/SAPP/USIT University of Oslo, Norway Affiliation Faculty Staff Students member affiliate employee

12 © GT/SAPP/USIT University of Oslo, Norway Users ID for identification authentication Could have ID in different namespace Data on authentication –Passwd (Crypt, MD5) –Certificate

13 © GT/SAPP/USIT University of Oslo, Norway Source-system Most of the data in Cerebrum has one or more sources which are authoritative Other HR Cerebrum SR

14 © GT/SAPP/USIT University of Oslo, Norway Modules Interface to Systems –having authoritative information on entities at the campus –needing »authentication »information

15 © GT/SAPP/USIT University of Oslo, Norway What modules? FS, MSTAS (2 national SR of Norway) (MSTAS – ) SATS (school system in Norway) ( ) LT (HR at UoO) SAP (HR) (Spring 2003) LDAP ( ) NIS (POSIX) AD ( ) Admin client LMS (IMS E. 1.01, ) ( ) UA (Spring 2003) NDS (Maybe spring 2003)

16 © GT/SAPP/USIT University of Oslo, Norway More? Contact us! Foils: t

17 © GT/SAPP/USIT University of Oslo, Norway End/Fine/Slut/Finito/Slutt!

18 © GT/SAPP/USIT University of Oslo, Norway LDAP-Structure at UoO

19 © GT/SAPP/USIT University of Oslo, Norway Is this a PKI? No! But it is a requirement for a functional PKI. We are not a CA (to much work) But we need certificates for persons, roles, organizations, units and servers. External CA for persons, internal for all others. We need a map from ID in persons certificates to an uniq id at the University, which CA is secondary


Download ppt "© GT/SAPP/USIT University of Oslo, Norway Cerebrum, UoO new UAS Developing a 2 nd generatione of a single user- administration system for University of."

Similar presentations


Ads by Google