Case Study: DirXML Implementation at Waste Management Rick Wagner Systems Engineer Novell, Inc.

Slides:

Advertisements

Similar presentations

December 29, 2013 Willem Bagchus Master CNE, CLP, MCP Senior SE, Senior Trainer GWAVA Reload.

Advertisements

Reduce Cost & Complexity Partner logo here Presenters Name (16pt) Presenters Title (14pt) Company/ (14pt) Manage and Deploy Applications using Virtualization.

Nsure ™ Audit Essentials Rick Meredith Software Engineer Novell, Inc. Jaime Brimhall Software Engineer Novell, Inc.

How to Successfully Cluster GroupWise Gregg A. Hinchman Consultant, Hinchman Consulting Ed Hanley Senior Consultant, Novell.

SAN Design Considerations Hylton Leigh Senior Consultant Novell Consulting, UK Stuart Thompson Senior Consultant Novell Consulting, UK.

Understanding Active Directory

How to Implement a Cluster of Clusters Atiq Adamjee Senior Architect Novell, Inc. Brad Rupp Software Engineer Novell, Inc.

Password Management Bill Street, Nathan Jensen, Mike Simpson, Will Peterson Identity Management Engineering.

Upgrading to Novell ® SecureLogin 3.5 Rod Tietjen,

Studio 5 João Ferreira EMEA Product Specialist (exteNd) Studio Product manager, Novell, Inc.

Developing for Novell ® Nsure ™ SecureLogin Gordon Mathis Senior Software Engineer, Novell Inc.

DIR-835A1 Wireless N750 Dual-Band Router Wireless & Router Product Div. July 2011 D-Link WRPD.

Document Management with GroupWise ® Gregg Hinchman Consultant Hinchman Consulting Jerry Winkel Novell Escalation Engineer.

Nsure ™ Audit: Instrumenting Custom Applications Rick Meredith Jason Arrington Nsure Audit Engineering Novell, Inc.

Configuring Novell Account Management with Identity Manager for Linux and UNIX Doug Anderson Product Manager Boyd Wilson Product Architect,

Implementing the DirXML ® Starter Pack on NetWare ® 6.5 Richard Moore, Novell DirXML Engineering Stuart Mansell, Novell Consulting.

Implementing Novell iChain ® at the City of Los Angeles Adam Loughran Senior Systems Engineer, Novell Robert Gillette IS Development Manager, City of Los.

Benefits of a SUSE ® Subscription Insert Presenter's Name (16pt) Insert Presenter's Title (14pt) Insert Company/ (14pt)

Configuring Identity Manager 2 (formerly DirXML ® ) for JDBC (w/DirXML) Jason Elsberry Software Engineer

Implementing iChain ® in the Wild: Life beyond the lab Rich Roberts Senior Architect – Novell Consulting Novell Inc. Jim Short iChain Guru – Novell Consulting.

Implementing DirXML ® Stylesheets David Wagstaff

Novell Nsure TM Identity Manager 2 andGroupWise Provisioning Art Purcell, GroupWise ® Engineering, David Holbrook, DirXML Engineering,

May 23, 2006 Open Source and the Public Sector Brian Fisher Linux Specialist Public Sector

Successful GroupWise Clustering, Part 1 Gregg A. Hinchman Ed Hanley Novell Inc.

April 30, 2007 openSUSE.org Build Service a short introduction Moiz Kohari VP Engineering.

SSL, Single Sign On, and External Authentication Presented By Jeff Kelley April 12, 2005.

The Art of Business Continuance Brad Rupp WG Storage Engineering Novell Gregg A. Hinchman Consultant Hinchman Consulting.

Novell ® BrainShare ® A Hands-on Approach to Implementing an Effective Retention Solution with Novell GroupWise and GWArchive Greg Smith, Director.

How to Successfully Cluster GroupWise ® Gregg A. Hinchman Consultant, Hinchman Consulting Ed Hanley Senior Consultant, Novell.

PS Security By Deviprasad. Agenda Components of PS Security Security Model User Profiles Roles Permission List. Dynamic Roles Static Roles Building Roles/Rules.

Kevin James Prototype Systems Devloper Novell Inc. Freddy Kaiser Technical Directory, Enterprise Solutions Novell Inc. BUS172 - Case Study: Extended Provisioning.

SecureLogin Solution for Hospital Environments Keith Lewis Novell Consultant Novell, Inc. Troy Drewry Protocom Consultant Protocom.

Advanced Mono Development: Best Practices Miguel de Icaza CTO, Ximian Nat Friedman VP Software Development, Ximian

Retention for GroupWise Angela Williams - Channel Sales Manager Jeff Stratford - President Nexic, Inc.

Beginning Programming with the Novell GroupWise ® Object API Glade Monson Developer Services, Novell Inc.

Strong Authentication to any Application Using SecureLogin and NMAS TM Scott Kiester and John Jolly Software Engineer Novell, Inc.

Securing GroupWise ® end-to-end with SSL Mike Bills ATT Engineer, Novell Inc.

Federico Guerrini IDA TSP, EMEA Incubation Team From Identity Synchronization to Identity Management.

Best Practices for Running Multiple Identity Manager 2 (formerly DirXML ® ) Drivers on Linux and Solaris Patrick J Cush Senior Technical Specialist Novell.

Oracle HFM Implementation Boot Camp

Securing Legacy Applications with exteNd Composer and Novell iChain Kirk Noren Application Services Specialist Novell, Inc.

Configuring Novell GroupWise ® on SuSE LINUX Randy Brown GroupWise Dedicated Support Engineer, Novell Inc. Matt Preston GroupWise Support.

Installing and Configuring the Novell Identity Manager Mainframe and IBM AS/400 Connector Doug Anderson Product Manager Boyd Wilson.

DIR-826L Wireless N600 Gigabit Cloud Router Sales Guide WRPD Jan 25 th, 2012 D-LINK HQ.

Introducing Novell ® Identity Manager 4 Insert Presenter's Name (16pt) Insert Presenter's Title (14pt) Insert Company/ (14pt)

가상화 기반의 Workload 관리솔루션 : FORGE PlateSpin Virtualization and Workload Management 나영관 한국노벨 /

SUSE ® Linux Enterprise High Availability Extension.

Introduction to GroupWise ® C3POs Glade Monson Developer Services, Novell Inc.

WorkloadIQ ™ The intelligent way to build, secure, manage and measure workloads across physical, virtual and cloud environments Your Name Here Your Title.

IDC Says, "Don't Move To The Cloud" Richard Whitehead Director, Intelligent Workload Management August, 2010 Ben Goodman Principal.

Novell ® IT Consulting Insert Presenter's Name (16pt) Insert Presenter's Title (14pt) Insert Company/ (14pt)

SUSE ® Linux Enterprise Desktop in a One-To-One 21st Century Classroom Alex Inman Director of Technology Whitfield School

Novell ® Technical Training Field / Sales Presentation Insert Presenter's Name (16pt) Insert Presenter's Title (14pt) Insert Company/ (14pt)

Introduction to SUSE Studio Tim Serong Senior Clustering Engineer OPS Engineering, Novell Inc.

OES11 / SLES11 Feature Competitive Novell Confidential.

GStreamer in OpenOffice.org? Cédric Bosdonnat, Radek Doulík.

Forrester and Novell Novell ® Identity Manager 4 Webcast I Insert Presenter's Name (16pt) Insert Presenter's Title (14pt) Insert Company/ (14pt)

Novell ® Demo Systems Portal Update Doc Hodges Novell Demo Systems

DHP-600AV / DHP-601AV Powerline AV2 Gigabit Adapter Powerline AV2 Starter Kit Sales Guide WRPD, Mar 2013 D-Link Confidential.

From Source Code to Packages and even whole distributions By Cool Person From openSUSE.

Enterprise Linux Servers Solution Overview Kerry Kim Enterprise Linux Servers Solution Manager.

From Source Code to Packages for Various Distributions Andreas Jaeger Program Manager openSUSE

UI-Facelift of the YaST Partitioner Module Martin Schmidkunz Status: 13th February 2008.

SUSE Studio: Building distributions By Cool Person From openSUSE.

The Community role in openSUSE life-cycle Dinar Valeev Community member.

Redesign of AppArmor Modules in YaST

Presentation transcript:

Case Study: DirXML Implementation at Waste Management Rick Wagner Systems Engineer Novell, Inc.

© March 18, 2004 Novell Inc. 2 one Net: Information without boundaries…where the right people are connected with the right information at the right time to make the right decisions. The one Net vision Novell exteNd ™ Novell Nsure ™ Novell Nterprise ™ Novell Ngage SM : : : :

© March 18, 2004 Novell Inc. 3 The one Net vision Novell Nsure solutions take identity management to a whole new level. Novell Nsure gives you the power to control access so you can confidently deliver the right resources to the right people — securely, efficiently, and best of all, affordably. Novell Nsure ™ Novell exteNd ™ Novell Nsure ™ Novell Nterprise ™ Novell Ngage SM : : : :

Company Background

© March 18, 2004 Novell Inc. 5 Company Information Waste Management, Inc HQ: Houston, Texas Employees: – 55,000 full time – 10, ,000 contractors As the leading provider of comprehensive waste management services, Waste Management serves municipal, commercial, industrial and residential customers throughout the United States, Canada and Puerto Rico.

© March 18, 2004 Novell Inc. 6 The Situation History Significant growth in 1998 through 2000 Acquired an average of one company per day Each acquisition was run independently No central application suite Business Drivers High level and Consistency of Customer service Business process enabling Single sign on Consistent application of security policies

Formulating a Solution

© March 18, 2004 Novell Inc. 8 The Solution Novell DirXML/eDirectory eDirectory 8.7 and DirXML 1.1a PeopleSoft Enterprise Portal Enterprise Portal 8.4, Upgrading to 8.8 HR 7.5 (Upgrading to HR 8.8) Financials 8.4 (Upgraded from Financials 7.5) Netegrity SiteMinder Policy Server 5.5 SP1

9 Components That Make Up the System SiteMinder eDirectory DirXML Web Server Netegrity’s SiteMinder supplies single sign on authentication and policy based resource authorization IBM HTTP (Apache) and IIS Web Servers serve the applications eDirectory is the Meta Directory DirXML is the glue used for aggregating and synchronizing users and application roles

© March 18, 2004 Novell Inc. 10 Automated User Provisioning Users created in Active Directory and pushed to Meta Directory by DirXML As Active Directory account (including password) is updated the change is automatically pushed to user’s account in eDirectory Near Future – synchronize user information in PeopleSoft HR with Meta Directory Future – automated security assignments

© March 18, 2004 Novell Inc. 11 Synchronized Role Based Access Control PeopleSoft security is maintained in the applications (Permission Lists) Application roles pushed to the Meta Directory using DirXML User’s role assignment(s) maintained in Meta Directory

© March 18, 2004 Novell Inc. 12 Centralized Security Administration Separation of roles from application access control management Delegated administration Consistent application of corporate security policies Consistent interface minimizes training

Implementing the Solution

14 Putting It All Together Meta Directory Dir XM L Policy Engine  Policy Engine Reads Policies and Roles from Meta Directory Application Security Store  Application Security Administrator defines the Application Roles and the Roles are pushed to the Meta Directory by DirXML Web Server  User is served appropriate content and functionality for their Role assignments Users are assigned Roles in the Meta Directory using the Administration System  Application Server  Web Server passes Roles to Application Server as header variables Active Directory Users are created in Active Directory and pushed to the Meta Directory by DirXML   User Requests access to Application  Policies enforced at web server

15 Security Process eDirectory SiteMinder Policy Engine  SiteMinder Authenticates the user against their Directory Account and checks the users Authorization for Accessing the Portal PeopleSoft Database  If the user is not already authenticated to SiteMinder, the Web Agent automatically logs into the Portal as DEFAULT_USER using a custom login.fcc file Apache Web Server PeopleSoft Server User enters their Userid and password and posts the credentials to the SiteMinder login.fcc   User Requests In their browser  If the user’s account does not exist in the Portal it is created The Portal Guest Page is displayed   The user is presented with their personalized view of the portal  SignOn PeopleCode in PS App Server executes. User ID is passed to PS Server as header variable  The user’s roles, permission lists and things like address and user description are dynamically added  Netegrity PeopleSoft Connector checks Portal and SiteMinder sessions to make sure that they are the same user

16 Software Configuration WebLogic Application Servers WebLogic 6.1 SP2 Web Servers IBM HTTP Server Netegrity Apache Web Agent V5QMR2 SiteMinder Policy Servers Netegrity SiteMinder Policy Server 5.5 SP1 eDirectory LDAP Servers Novell eDirectory 8.7 DirXML 1.1a Database Batch Server Oracle PeopleTools Tuxedo 6.5 Oracle PeopleTools Tuxedo 6.5 Netegrity PeopleSoft Connector 1.2 PeopleSoft Application Servers

General Disclaimer This document is not to be construed as a promise by any participating company to develop, deliver, or market a product. Novell, Inc., makes no representations or warranties with respect to the contents of this document, and specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose. Further, Novell, Inc., reserves the right to revise this document and to make changes to its content, at any time, without obligation to notify any person or entity of such revisions or changes. All Novell marks referenced in this presentation are trademarks or registered trademarks of Novell, Inc. in the United States and other countries. All third-party trademarks are the property of their respective owners. No part of this work may be practiced, performed, copied, distributed, revised, modified, translated, abridged, condensed, expanded, collected, or adapted without the prior written consent of Novell, Inc. Any use or exploitation of this work without authorization could subject the perpetrator to criminal and civil liability.