Presentation is loading. Please wait.

Presentation is loading. Please wait.

Don Quigley What is a Virtual LDAP Directory? Layer of abstraction between backend user and data stores and applications that consume.

Similar presentations


Presentation on theme: "Don Quigley What is a Virtual LDAP Directory? Layer of abstraction between backend user and data stores and applications that consume."— Presentation transcript:

1 Don Quigley

2 What is a Virtual LDAP Directory? Layer of abstraction between backend user and data stores and applications that consume LDAP (or maybe SQL).

3

4 For instance…

5 Maybe more interesting and vendor specific

6 Contextualized Virtual Views

7 Let’s take a closer look at that first picture…. So, if I’m actually pulling information from all of those data sources listed in the picture what’s performance going to look like? Are these data stores highly available? Are they running on an old 486 under some guy’s desk (don’t laugh)? Are they even in the same country as my servers? What if there’s not a common key between these stores?

8 In Memory and Persistent Cache In memory cache sounds nice… except we’re talking about a virtual directory. It could be really useful or it could just be a huge waste of system resources. In memory caches work best on systems that have a single version of the truth. Standalone directory and metadirectory Persistent Cache … excellent for data that doesn’t change often or does not have a high cost when it’s out of date.

9 So why do I want one? App developers & vendors can’t agree on what attribute values look like let alone what the DIT should look like. You could use a metadirectory and a separate standalone LDAP directory but that seems like a lot of work.  Directories should be flat  All app users should be under a common OU  streetAddress is the physical address  streetAddress is the mailing address  telephoneNumber should only be numeric  telephoneNumber should be (xxx) xxx-xxxx  My app crashes if uid isn’t the naming attribute but all of my users are in Active Directory  I need SSN but it can’t be the real one

10 Keep talking…  Mergers  Users in more than one user store  Prevent duplication of information (entitlements)  Flexible taxonomy  Availability  Fast  Complete  Up to date  Everyone else has one  Cheaper than correlating data on a per app basis  Layer of abstraction works both ways  Makes a great PIP if you’re into that sort of thing  (cue dramatic music…) The Cloud!  Really good auditing  Single point of security  Can write back  Sharepoint!!!

11 Current Vendors Radiant Logic Market Leader. Lot’s of good stuff. The prettiest diagrams of the lot. Radiantlogic.com OptimalIDM.Net based for you Java haters. Optimalidm.com Symlabs Virtual Directory Server Quest One Identity Solution & Quest Migration Pretty nice and it’s the fastest virtual directory out there Symblabs.com Oracle Virtual Directory Hey, no one ever got fired for buying Oracle. They also have Virtual Directory Lite (SunONE Directory) Oracle.com

12 Questions and Demo Our Esteemed Mascot Llarry the Lldap Llama FROM "LLAMA- FRESH" FARMS LTD. NEAR PARAGUAY


Download ppt "Don Quigley What is a Virtual LDAP Directory? Layer of abstraction between backend user and data stores and applications that consume."

Similar presentations


Ads by Google