Presentation is loading. Please wait.

Presentation is loading. Please wait.

NMI-EDIT CAMP Synopsis, ISCSI Storage Solution, Linux Blade Cluster, And Current State Of NetID By Jonathan Higgins Presentation Template available from.

Published byTimothy Casey Modified over 8 years ago

Similar presentations

Presentation on theme: "NMI-EDIT CAMP Synopsis, ISCSI Storage Solution, Linux Blade Cluster, And Current State Of NetID By Jonathan Higgins Presentation Template available from."— Presentation transcript:

1 NMI-EDIT CAMP Synopsis, ISCSI Storage Solution, Linux Blade Cluster, And Current State Of NetID By Jonathan Higgins Presentation Template available from Microsoft The Identity Management System

2 NMI-EDIT CAMP Synopsis Directory Workshop covering directory implementation steps, architectures, person registries, and operational issues. Basics for implementing an Identity Management System.

3 What is Identity Management? Identity Management is an abstract for a system that manages: Identification, Authentication, and Authorization. Identification is the act of pre-assigning a unique namespace (a username) to an individual. Authentication binds a person with an Identity Authorization is the act of ensuring that a person is afforded access only to services and data required to support allowed tasks.

4 The Big Picture

5 Growing Pains and Silos vs. Suites Why are we doing this? Impending Growth of student, faculty, and staff population Scalability Silos: authentication, authorization and application are all self contained and individually administrated. Integrated Suites: Set of applications that authenticate and authorize from a central service for multiple applications.

6 What Are We Doing? NetID project ongoing since 9/2002 OpenLDAP and Kerberos completed 5/2003 Active Directory integration synchronized with OpenLDAP and trusted by Kerberos 2/2004 Negotiation of data to provide individual affiliations for dynamic groups in progress. Blade Technology and new resources. ISCSI storage solution for remote data storage in progress.

7 The State of NetID 3 rd semester in production, and working as intended. New attributes are on the way. Dynamic groups based on affiliations Password Expiration notification system

8 Groups Students, Future Students, Undergraduate, Graduate, Staff, Faculty, Employees, Visitors, Temp Employees, Student Assistants, Alumni, and Retired Groups that will exist before this Fall include: Department based groups, Degree of Study groups, College based groups, and Courses. What other groups do you think we may need?

9 Linux Blade Cluster This project is ongoing and dependant on the ISCSI storage solution. The MTA project will provide a single mail exchange for the @Kennesaw.edu domain. The MTA will include Spam control and Virus scanning. Public Visible LDAP replica (FERPA controls will be in place for students)

10 ISCSI Storage Array? A procedure will be available to acquire disk space. As a system administrator you just need to know that ISCSI provides a block level network device, not a file IO share.

11 How does the ISCSI Storage System work? Client Systems OS Layer Physical Layer

12 What Still Needs To Be Done? Upgrade NetID and Administration Tools to include: Modify schema and add attributes as needed Modify RDN for user objects to free the uid attribute to allow multi-values or aliases Add Radius for wireless authentication Add Account Locking/Deletion Pursue Campus buy-in to NetID though identifying services and providing documentation for integration. And more…

13 What can we expect in the future? Solution for guest computing may be Sponsorship? An idea introduced at the CAMP. Individual account holders would be responsible for the sponsorship and creation of an account. The new account would have no more access than the sponsor. Access control would be monitored by the sponsor. Possible solution to guest computing issues, parental access to their students resources, and other.

14 What else can we expect? Inter-Institutional Applications Shibboleth, a Web-based inter-organizational authorization system, leverages attribute repositories such as directories and the larger identity management infrastructure to service inter-institutional applications and resource sharing. Authentication for students from another trusted university to applications and services hosted here at Kennesaw and vice-versa.

15 Any Questions? Feel free to ask anything, except topics that do not concern KSU.

Download ppt "NMI-EDIT CAMP Synopsis, ISCSI Storage Solution, Linux Blade Cluster, And Current State Of NetID By Jonathan Higgins Presentation Template available from."

Similar presentations

Federated Access implementation: experience of AUCA Library - Kyrgyzstan 4 th -7 th June, 2008, Aberdeen, Scotland Sania Battalova, EIFL Country and FOSS.

Federated Access implementation: experience of AUCA Library - Kyrgyzstan 4 th -7 th June, 2008, Aberdeen, Scotland Sania Battalova, EIFL Country and FOSS.
Data: Application requirements, data flow, and person registry Tom Barton University of Chicago.

Data: Application requirements, data flow, and person registry Tom Barton University of Chicago.
Defining the Security Domain Marilu Goodyear John H. Louis University of Kansas.

Defining the Security Domain Marilu Goodyear John H. Louis University of Kansas.
Copyright Ann West 2003. This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial,

Copyright Ann West This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial,
IBM Software Group ® Accessing Domino via Outlook iNotes Access for Microsoft Outlook - Notes Domino 5.5 – 6.0.1 Domino Access for MS Outlook - Notes Domino.

IBM Software Group ® Accessing Domino via Outlook iNotes Access for Microsoft Outlook - Notes Domino 5.5 – Domino Access for MS Outlook - Notes Domino.
70-284 MCSE Guide to Microsoft Exchange Server 2003 Administration Chapter 14 Upgrading to Exchange Server 2003.

MCSE Guide to Microsoft Exchange Server 2003 Administration Chapter 14 Upgrading to Exchange Server 2003.
Using Levels of Assurance Renee Shuey nmi-edit CAMP: Charting Your Authentication Roadmap February 8, 2007.

Using Levels of Assurance Renee Shuey nmi-edit CAMP: Charting Your Authentication Roadmap February 8, 2007.
© 2006 Cisco Systems, Inc. All rights reserved. CUDN v1.1—4-1 Migrating from Voice Mail to Unified Messaging Migrating Voice Mail to Unified Messaging.

© 2006 Cisco Systems, Inc. All rights reserved. CUDN v1.1—4-1 Migrating from Voice Mail to Unified Messaging Migrating Voice Mail to Unified Messaging.
Email Infrastructure Mark Rosenberg UCCSC. UCCSC – August 9, 2005 What is LBNL? A Department of Energy National Laboratory, operated by the University.

Infrastructure Mark Rosenberg UCCSC. UCCSC – August 9, 2005 What is LBNL? A Department of Energy National Laboratory, operated by the University.
3.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.

3.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.
Peter Deutsch Director, I&IT Systems July 12, 2005

Peter Deutsch Director, I&IT Systems July 12, 2005
Coming Soon ! Google Prepared by Frank Saraceno.

Coming Soon ! Google Prepared by Frank Saraceno.
Chapter 8: Network Operating Systems and Windows Server 2003-Based Networking Network+ Guide to Networks Third Edition.

Chapter 8: Network Operating Systems and Windows Server 2003-Based Networking Network+ Guide to Networks Third Edition.
3.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.

3.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.
The Homegrown Single Sign On (SSO) Project at UM – St. Louis.

The Homegrown Single Sign On (SSO) Project at UM – St. Louis.
Streamlining Support and Management through the Implementation of Active Directory Educause 2003 Mid-Atlantic Regional Gale D. Fritsche –

Streamlining Support and Management through the Implementation of Active Directory Educause 2003 Mid-Atlantic Regional Gale D. Fritsche –
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 7 Configuring File Services in Windows Server 2008.

MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 7 Configuring File Services in Windows Server 2008.
LDAP Management at Stony Brook Making Active Directory and PeopleSoft Work Together SUNY Technology Conference Rochester, New York Monday June 12, 2006.

LDAP Management at Stony Brook Making Active Directory and PeopleSoft Work Together SUNY Technology Conference Rochester, New York Monday June 12, 2006.
1 Chapter Overview Creating User and Computer Objects Maintaining User Accounts Creating User Profiles.

1 Chapter Overview Creating User and Computer Objects Maintaining User Accounts Creating User Profiles.
Windows 2000 and Active Directory Services at UQ Scott Sinclair Senior Systems Programmer Software Infrastructure Group

Windows 2000 and Active Directory Services at UQ Scott Sinclair Senior Systems Programmer Software Infrastructure Group

Similar presentations

Ads by Google