Authorizing Access to Services at Penn State University

Slides:



Advertisements
Similar presentations
ESUP-Portail: a pure WebDAV-based Network attached Storage Pierre Gambarotto Pascal Aubry.
Advertisements

Bruce Cowper IT Pro Advisor Microsoft Canada. Agenda Windows Server™ 2003 R2 –Principal Scenarios Identity and Access Management Efficient Storage Management.
With Microsoft ® Enrolment for Education solutions Be the school of tomorrow, today.
Welcome Micronet! TAM: Susan Tobes Enterprise Windows: Mike Blasingame Enterprise UNIX: Jeff Makaiwi Database Services: Karen Kato Web Applications: Vahid.
PKI Activities at Virginia January 2004 CSG Meeting Jim Jokl.
Webdisk Storage Anywhere, Anytime for Everyone Presented at Educause, 2003 Copyright 2003, Jeremy Mortis and Harold Esche. This work is the intellectual.
June 1, 2001 Enterprise Directory Service at College Park David Henry Office of Information Technology University of Maryland College Park
Introduction to UNIX Acknowledgement:Thanks to Dr Andrew Horner for the original version of this set of slides. All trademarks are the properties of their.
Identity Management: The Legacy and Real Solutions Project Overview.
Microsoft Office Sharepoint Server 2007 (MOSS) Overview Momentum Microsoft November 15, 2007.
Campus Administrative Systems David Cook Information Technology Services
Building a Portal Framework: The Penn State Student Portal Project Presented By James Leous, Program Manager James Vuccolo, Lead Research Programmer.
Fermilab VPN Service What is a VPN ?.
Understanding Active Directory
Penn State University College Of Education Understanding College of Education Resources.
Introduction to Computer Administration System Administration
John Hartley Mark Bransby Utilizing Adobe's Publishing Solutions for Distributed Web Publishing.
Introduction to Active Directory December 10th, pm Daniels 407.
SSP Capacity Planning. One powerful machine with everything.
1 Web Server Administration Chapter 1 The Basics of Server and Web Server Administration.
Projects. High Performance Computing Projects Design and implement an HPC cluster with one master node and two compute nodes. (Hint: use Rocks HPC Cluster.
Jefferson Lab Site Report Sandy Philpott Thomas Jefferson National Accelerator Facility Newport News, Virginia USA
Using the Powerful Microsoft Azure Platform, e-SUAP Properly and Securely Manages All Steps for Customizable Business Activities Permissions MICROSOFT.
Microsoft Active Directory(AD) A presentation by Robert, Jasmine, Val and Scott IMT546 December 11, 2004.
Windows 2000 Operating System -- Active Directory Service COSC 516 Yuan YAO 08/29/2000.
Shibboleth as Attribute Delivery for Authorization Renee Shuey Penn State University June 27, 2006.
® Gradient Technologies, Inc. Extending the Value of DCE Open Group Members Meeting Sand Diego, CA USA April 1998 Brian Breton.
Business Objects Migration Strategy Paul Carletta Data Accomplished.
1 Windows 2008 Configuring Server Roles and Services.
® Gradient Technologies, Inc. Inter-Cell Interworking Access Control Across the Boundary Open Group Members Meeting Sand Diego, CA USA April 1998 Brian.
Stanford Authorization Existing mainframe based authority –homegrown, in operation since the 80’s –primarily for financial and personnel authority for.
PKI Activities at Virginia September 2000 Jim Jokl
Information Technology Practical information for new faculty about information technology at Missouri S&T it.mst.edu Christopher Dew Director, IT Operations.
Tonido Cloud Private, Highly Scalable, Self-Hosted Cloud Storage/Sync Solution.
John Douglass, Developer Ron Hutchins, Dir. Engineering Herbert Baines, Dir. InfoSec.
Introduction to Microsoft Windows 2000 Welcome to Chapter 1 Windows 2000 Server.
FSU Metadirectory Project The Issue of Identity Management Executive Overview.
Samba – Good Just Keeps Getting Better The new and not so new features available in Samba, and how they benefit your organization. Copyright 2002 © Dustin.
An Enterprise Computer Architecture ASIG – Sept 12, 2001.
Jens G Jensen UK e-Science Alternative CA software Jens G Jensen UK e-Science CA Rutherford Appleton Laboratory.
Authentication at Penn State: The Present State of Affairs and Future Directions James A. Vuccolo, Manager, Software Technologies Group Phil Pishioneri,
Virtual Classes Provides an Innovative App for Education that Stimulates Engagement and Sharing Content and Experiences in Office 365 MICROSOFT OFFICE.
Build v. Buy Steve Kellogg Penn State University 9/24/2003.
UNIT-3 1.Web server software and Tools 1IT2031 UNIT-3.
System Center Lesson 4: Overview of System Center 2012 Components System Center 2012 Private Cloud Components VMM Overview App Controller Overview.
Satisfy Your Technical Curiosity 27, 28 & 29 March 2007 International Convention Center (ICC) Ghent, Belgium.
Module 9 User Profiles and Social Networking. Module Overview Configuring User Profiles Implementing SharePoint 2010 Social Networking Features.
Module 1: Overview of Microsoft Office SharePoint Server 2007.
Oracle HFM Implementation Boot Camp
Introduction TO Network Administration
Configuring, Managing and Maintaining Windows Server® 2008 Servers Course 6419A.
Carnegie Mellon Computing Services 2/15/2001 v1.2DRAFT1 Systems Development Joseph Jackson Walter Wong.
Microsoft Partner Conference Integrated Innovation Don Kerr Partner Technology Specialist.
Carnegie Mellon Andrew Overview Walter Wong Computing Services.
ANGEL Penn State’s Course Management System Created by PSY Office of C&IS.
Introduction to System Administration. System Administration  System Administration  Duties of System Administrator  Types of Administrators/Users.
Short Customer Presentation September The Company  Storgrid delivers a secure software platform for creating secure file sync and sharing solutions.
DCE Deployment at PSU Steven Kellogg Director, Advanced Information Technologies Center for Academic Computing
Productivity Architect Meet Chris Bortlik Author, Blogger, Speaker.
PASS What is it and why should you care?. What is it? Part of the Infrastructure 3 main components to middleware Authentication Directory - Authorization.
Auth/Authz at PSU Steve Kellogg Director, Advanced Information Technologies Academic Services and Emerging Technologies Information Technologies Services.
HUB International: Software & Common Applications
Web Technology Seminar
Barracuda SSL VPN 2012.
Consulting Services JobScheduler Architecture Decision Template
Never Say Never: Creatively Leverage Your Legacy
Networks Software.
Shibboleth as Attribute Delivery for Authorization
IT Service Delivery And Support Week Three - OS
Presentation transcript:

Authorizing Access to Services at Penn State University Steve Kellogg, Director, Advanced Information Technologies Center for Academic Computing

Authorizing Access HOW What “Baggage” v. “Luggage” Integrated everything Authentication, authorization, namespace, management, filesystem Heterogenous What File service Web service Applications Systems Delegation

Penn State Environment 24 Campus Locations ~74,000 Full Time Students ~5,000 Part Time Students ~25,000 Employees ~5,000 “Others”

CACTUS Accounts Database (Oracle) Center for Academic Computing Tracking of User Services Backend processes Signature Stations (end user $ Auth) User Services: Access(DCE), Email, web, DFS, Database, backup, Class News, Printing, Plotting, calendar, LDAP,... Accounts Database (Oracle) One Account, Many Services Organize data from disparate sources Automation ALWAYS goal Fully extensible Scalability of services Java/web Interface External Data sources

Systems Access Lab systems Modems ISP apps Windows MAC Unix(AIX, IRIX, Solaris) Modems Authorized based on group membership ISP apps email, netnews, …

DCE Production Applications Fileservice DFS 50MB Home Directories webmail, portal profiles, personal webspace 300 MB for HPC and VIZ users 10 MB quota increment per course Quota reduced at end of semester Site licenses for Solaris, AIX, NT, IRIX

DCE Production Applications Group management – Admin, HPC, Classes, Ad Hoc – Web Authorization – Shared DFS access – 3 groups typically created for each group - Delegated group management - Group, group_admin, group_owner

DCE Production Applications CAC Web Service – AIX/Solaris/Linux – Apache w/ & w/o mod_auth_dce – Most content in DFS – Load balanced w/ IBM’s Network Dispatcher – JDBC and PerlDBI access to Oracle and DB2 .eg MicroSoft SW distribution

DCE Production Applications Web Servers (Gradient’s NetCrusader Security Adapter) – Executive Information System (EIS) – Library access to licensed Web content (LIAS) – Purchasing Catalog – Computer & Information Systems (C&IS) Web site – Microcomputer Order Center (MOC) – Smeal College of Business – Electronic Testing Services (ETS) 3

DCE Production Applications Other web service Office of Physical Plant Linux, Apache, K5 Office of Human resources NT, IIS, Gradient DCE RT, VB Lab consultant management tools AIX, K5, C Others that we don’t necessarily know about…

DCE Mandarin OS/390 Enterprise Server; ADABAS NT Web Servers; WebComm.dll Authenticated RPC client Several services; same RPC code base Student Apps (eLion) Business Apps (WebIBIS) Financial Apps (FIT) RPC protection level integrity privacy

PKI at PSU CREN CA Pilot Server Certs Short term certs OpenSSL Kx509 auth in DCE cell

Questions?

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.