Presentation is loading. Please wait.

Presentation is loading. Please wait.

Middleware Deployment Issues Jack Suess, CIO, UMBC

Published byDiane Dalton Modified over 8 years ago

Similar presentations

Presentation on theme: "Middleware Deployment Issues Jack Suess, CIO, UMBC"— Presentation transcript:

1 Middleware Deployment Issues Jack Suess, CIO, UMBC jack@umbc.edu http://umbc.edu/~jack

2 Using Directory Services for Application Information2 UMBC Institutional Profile University of Maryland, Baltimore County. Established 1966. Enrollment is 11,200. Carnegie designation of Research/Extensive Centralized administration and IT services with strong faculty governance structure Heavy IT emphasis, about 25% of students in IT related majors. Locally developed SIS/HR system. Recently signed on to implement Peoplesoft.

3 Using Directory Services for Application Information3 What we will discuss The business factors driving this initiative How we got involved in developing directory services The directory development team and process Development and deployment of new applications using the directory service Creation of a single sign on web authenticator Integrating WebCT and Blackboard course management tools Questions

4 Using Directory Services for Application Information4 Business Factors Driving the Development of Directory Services Fall 1999.Finished with Y2K. UMBC decided we would begin discussions to replace our SIS, HR and Finance systems. UMBC started two online graduate programs and began planning for a third program. We needed to add more web-based self-service applications, especially account generation. We had successfully deployed our web portal, myUMBC and were thinking about how we may extend it to alumni, parents, and prospective students. Fall 1999, saw WebCT usage plateau, discussions with faculty pointed at need to make it “easier” to use course tools.

5 Using Directory Services for Application Information5 Directory Services@UMBC Internally we had decided that the indecision over our SIS/HR plans made using those databases directly a mistake. We felt LDAP- based directory services offered us more flexibility and we didn’t have to worry about overload on transaction systems Dec. 1999, UMBC applied and was selected to participate in the I2 “middleware” initiative. UMBC created a middleware team to plan directory development. March 2000, purchased Innosoft directory server and began development

6 Using Directory Services for Application Information6 Directory Development Team and Process As then Director of OIT, I was the project sponsor and evangelist for middleware A technical lead was identified and the project team created. –Members represented all areas of IT –Need to educated team on directory services –Sharp differences on what directory platform to use –I2 middleware group was helpful in framing issues for consideration I worked with VP’s and Vice Provost’s to get support for project and access to data

7 Using Directory Services for Application Information7 Development and Deployment Phase 1 Phase 1 – September 2000 Decided to load all students in SIS who have applied UMBC to date, ~275000 Decided early on that directory data would not be authoritative or updated directly by end-users. Updates to SIS/HR done through myUMBC and propogated back to directory through database change logs Where duplicate data exists in HR/SIS we used most recent entry as “current” Identified need for a common web-based authentication system, we created a service we call webauth.

8 Using Directory Services for Application Information8 Development of Webauth Modeled after Kerberos, cookies function as tickets and web services use redirects to get service tickets. Here is how it works. –Client authenticates to webauth and gets a ticket- granting cookie (TGC), applications use this to get service cookies for applications. –Applications connect to service, if they don’t have a TGC the service redirects them to the webauth server with an encoded redirect that can get them “back” to the service after getting a service ticket –Created apache module to replace basic auth service –Created Java and Perl interfaces –Available upon request but consider I2 shibboleth

9 Using Directory Services for Application Information9 UMBC Directory Applications Brought up directory-enabled account generation and management system Web-based, allows delegation of control over different functions to groups/people based on roles and needs. Helpdesk can now reset passwords and quotas. Self-service, students can now select username and password without coming onto campus Supports user email redirection and lookup IntegratedBlackboard and WebCT to use our username/password and autoenroll

10 Using Directory Services for Application Information10 Blackboard Integration Great product but….. July 2000, UMBC purchased a level 3 contract from Blackboard. Paid them to read our webauth cookie and retrieve authenticated username. UMBC wrote Java classes for them to call. Brought this up January 2001. –Extract users twice a day from directory and batch load into Blackboard. For fall 2001 we will automatically enroll students into their course –Had problems authenticating students coming in through some ISP’s. Tracked this to the way ISP’s play tricks with caching servers, we had to revamp java classes. – Had to figure out how to provide “guest” access.

11 Using Directory Services for Application Information11 Iplanet to AD Integration Summer 2001 began work on linking iPlanet directory to Microsoft AD Provide login access to labs running Windows 2000 Reverse engineered Microsoft AD account entries to get this to work Windows 2000 fully deployed in all labs January 2002

12 Using Directory Services for Application Information12 Blackboard Phase 2 Fall 2002 Developed group containers for people that track course enrollments For fall 2002 we will have students auto- registered into their blackboard courses by connecting BB to LDAP for updating course enrollments We use course containers for other services like limiting lab access to students in particular classes

13 Using Directory Services for Application Information13 Peoplesoft Plans Bringing Finance 8.4, HR 8, EPM 8.3 in July 2003. SA development will then start with deployment done by 8/2005 Recently begun testing of using LDAP for authentication and managing user profiles in 8.4 with good results.

14 Using Directory Services for Application Information14 Results The directory service has been our most reliable service, at least 99.99% uptime. These self-service applications have revamped the way we support users and the services we provide. Automated Blackboard connections were well received by faculty. Using a directory allowed us to utilize our institutional data in an academic context. The staff that did this would never be able to directly access and update our legacy SIS tables.

15 Using Directory Services for Application Information15 Leadership Style

16 Using Directory Services for Application Information16 Leadership Style: Role of CIO Developing an Enterprise Directory is akin to implementing an ERP project. The role of the CIO is similar: Executive leadership Developing campus support Change management Managing expectations

17 Using Directory Services for Application Information17 Leadership Style: Executive Leadership Unlike ERP, a CIO can’t expect other executives to “sponsor” middleware. A CIO must make the case, meaning justifying the ROI, of middleware Identify the tangible benefits from middleware that matter to your campus Make certain you treat this as a major project with a well-defined system development life cycle (SDLC)

18 Using Directory Services for Application Information18 Leadership Style: Developing Campus Support Laying the groundwork: Meet privately with key leaders and explain middleware and discuss what it means to their unit. Include faculty leaders in this Use the bully pulpit a CIO has to discuss the project with faculty, staff, and executives Don’t forget to build consensus in your internal IT organization

19 Using Directory Services for Application Information19 Leadership Style: Change Management Like ERP, middleware cuts across divisions and requires broad support Create a sense of urgency to the project, why is it important? It isn’t possible to over-communicate Identify ways to involve stakeholders in the decision making process Make certain you develop some quick wins

20 Using Directory Services for Application Information20 Leadership Style: Managing Expectations and Budget Like ERP, middleware development is an on- going process: A well-written project plan with quick wins defined at appropriate intervals is key to managing expectations and budget Life-cycle budgeting needs to be identified Middleware’s benefit is often found in productivity gains or through self-service. Identify ways to measure this ahead of time.

21 Using Directory Services for Application Information21 Leadership Style: IT Architecture I feel IT Architecture needs to become a cornerstone of strategic planning Your architecture should provide a framework for evaluating scenarios and options Middleware is a one of the key pieces of a successful IT architecture plan

22 Using Directory Services for Application Information22 Leadership Style: Final Comments CIO’s are responsible for IT architecture, of which, middleware is a fundamental component. No one else will do this for you. Every campus has leaders that must be brought on board for major projects, seek them out. Make certain you develop formal plans, identify quick wins, and communicate the benefits.

Download ppt "Middleware Deployment Issues Jack Suess, CIO, UMBC"

Similar presentations

WebISO PanelEducause SAC 2003 1 Implementing Single Sign On Technologies for Campus Portals Panel Nathan Dors, Project Lead Security/Middleware Unit Univ.

WebISO PanelEducause SAC Implementing Single Sign On Technologies for Campus Portals Panel Nathan Dors, Project Lead Security/Middleware Unit Univ.
Microsoft Learning Gateway for HE Rob Miles – Hull University, Lecturer Romola Ganguli – Microsoft Education Technology Advisor.

Microsoft Learning Gateway for HE Rob Miles – Hull University, Lecturer Romola Ganguli – Microsoft Education Technology Advisor.
Everything you wanted to know, but were afraid to ask……..

Everything you wanted to know, but were afraid to ask……..
Identity Management at the University of Florida Mike Conlon, Director of Data Infrastructure University of Florida, Gainesville, Florida Background Identity.

Identity Management at the University of Florida Mike Conlon, Director of Data Infrastructure University of Florida, Gainesville, Florida Background Identity.
Creating Executive Awareness about Information Security Joy Hughes, VP, George Mason Univ. Jack Suess, VP, UMBC EDUCAUSE.

Creating Executive Awareness about Information Security Joy Hughes, VP, George Mason Univ. Jack Suess, VP, UMBC EDUCAUSE.
Inter-Institutional Registration UNC Cause December 4, 2007.

Inter-Institutional Registration UNC Cause December 4, 2007.
FSU Directory Project The Issue of Identity Management Jeff Bauer Florida State University

FSU Directory Project The Issue of Identity Management Jeff Bauer Florida State University
Effective Involvement of Shareholders in Key Activities SACRAO 2009 February 10, 2009 Session T1.10.

Effective Involvement of Shareholders in Key Activities SACRAO 2009 February 10, 2009 Session T1.10.
1 Collaborators at the Gates of Troy: Extending eServices at USC.

1 Collaborators at the Gates of Troy: Extending eServices at USC.
Cross Platform Single Sign On using client certificates Emmanuel Ormancey, Alberto Pace Internet Services group CERN, Information Technology department.

Cross Platform Single Sign On using client certificates Emmanuel Ormancey, Alberto Pace Internet Services group CERN, Information Technology department.
DIY SIS Integration An Overview and Explanation of the Missouri Baptist University Snapshot System Copyright © 2010, All Rights Reserved.

DIY SIS Integration An Overview and Explanation of the Missouri Baptist University Snapshot System Copyright © 2010, All Rights Reserved.
Your Logo Here An Administrative Framework for the Blackboard Academic Suite Presented By Chris J Jones University of Oklahoma HSC April 13, 2005.

Your Logo Here An Administrative Framework for the Blackboard Academic Suite Presented By Chris J Jones University of Oklahoma HSC April 13, 2005.
UCB Enterprise Directory Services. Directory Services – Project History  Requirements defined  Project commission & goals articulated  Project teams.

UCB Enterprise Directory Services. Directory Services – Project History  Requirements defined  Project commission & goals articulated  Project teams.
Public Key Infrastructure at the University of Pittsburgh Robert F. Pack, Vice Provost Academic Planning and Resources Management March 27, 2000 CNI Spring.

Public Key Infrastructure at the University of Pittsburgh Robert F. Pack, Vice Provost Academic Planning and Resources Management March 27, 2000 CNI Spring.
Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.

Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.
1 www.sungardsct.com Overview Presentation on Luminis Platform  This presentation is taken from a much longer one by SungardHE  It shows the main elements.

1 Overview Presentation on Luminis Platform  This presentation is taken from a much longer one by SungardHE  It shows the main elements.
Graduate System for Management of Admissions, Alumni & Records Tracking (Grad SMAART) January 8, 2007 Office of Graduate Studies.

Graduate System for Management of Admissions, Alumni & Records Tracking (Grad SMAART) January 8, 2007 Office of Graduate Studies.
UNIVERSITY OF CALIFORNIA, RIVERSIDE COMPUTING AND COMMUNICATIONS “GETTING CONNECTED” Presented by: Computing and Communications Josee Larochelle September.

UNIVERSITY OF CALIFORNIA, RIVERSIDE COMPUTING AND COMMUNICATIONS “GETTING CONNECTED” Presented by: Computing and Communications Josee Larochelle September.
Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.

Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.
Student Information system

Student Information system

Similar presentations

Ads by Google