Presentation is loading. Please wait.

Presentation is loading. Please wait.

Open Source and the LDAP Enabled University

Published byAnton Hermann Modified over 6 years ago

Similar presentations

Presentation on theme: "Open Source and the LDAP Enabled University"— Presentation transcript:

1 Open Source and the LDAP Enabled University
December 4, 2018 Open Source and the LDAP Enabled University Thomas Jefferson University

2 December 4, 2018 Introductions John Page, Director of Core Technologies, Jeff-IT, Thomas Jefferson University Chris Campbell, Senior Linux Administrator, Jeff-IT, Thomas Jefferson University December 4, 2018

3 Open Source and the LDAP
December 4, 2018 Open Source and the LDAP The University needed a centralized directory to standardize access for applications and to simplify finding individuals Criteria Support LDAP v3 Non-proprietary solution Flexible Schema Evaluated several options Novell eDirectory – Came with PeopleSoft Active Directory – Next generation Microsoft Domain Model Netscape iPlanet – Used by outsourced provider OpenLDAP – Open source project December 4, 2018

4 Open Source and the LDAP cont’d
December 4, 2018 Open Source and the LDAP cont’d LDAP key points Campus Key - The University’s Unique ID OpenLDAP schema – iterative process to balance standard schemas elements, data source constraints and legal requirements A campus–wide initiative to LDAP enable all applications requiring authentication. This includes new and existing applications Accommodate data from existing systems December 4, 2018

5 Open Source and the LDAP cont’d
December 4, 2018 Open Source and the LDAP cont’d Existing Systems Peoplesoft acts as the authority for all faculty, staff and other paid personnel Banner acts as the authority for all student and volunteer faculty Jeffline Security System acts as the authority for all off-campus related personnel Associated institutions Contractors Other interested parties December 4, 2018

6 December 4, 2018 Metamerge Interim solution to bring all the disparate data sources into a single directory Currently a nightly process A hierarchy was created to ensure the cross-over elements were managed by the proper data source based on role within the University In development, we are creating XML tags which would trigger on events giving a near real-time creation of a directory entry This changes would cut the time to creation from hours to seconds December 4, 2018

7 Directory Enabled Applications
December 4, 2018 Directory Enabled Applications Several campus applications have been enhanced to take advantage of the directory: Pulse Portal (BlackBoard) BannerWeb JEFFLINE (Online library databases and web applications) Web Self Service (Front Range HEAT) December 4, 2018

8 Open Source Initiatives
December 4, 2018 Open Source Initiatives Several projects have been initiated because of the flexibility and low direct costs for Open Source Use Existing Open Source Software (OSS) Projects & Custom Programming to form Complete Solutions Mirror Functionality of Commercial Offerings December 4, 2018

9 Development Prerequisites
December 4, 2018 Development Prerequisites LDAP Functionality Based on Red Hat Linux Scripted Install Minimal interaction No prior knowledge needed Freely distributable Red Hat Server Development Project Need to introduce RHSD as name for project here. “We’re not that creative with names, so we just called it the ‘Red Hat Server Development Project’.” Cover OSS/GPL with the “Freely Distributed” bit. “We wanted to have the benefits of the Open Development model – outside contributors, etc.” December 4, 2018

10 Email Server RH Email Server (RHEMS):
December 4, 2018 Server RH Server (RHEMS): Standard Protocols: LDAP, IMAP, POP,etc. Web-Based Client for Users (IMP) LDAP Directory / Authentication Mail Filtering Address books Spam Blocking Web-Based Administration Tools Role-Based Tool Delegation Basic Mail System Functionality. Emphasis on Role Based Tools for TAC-type usage. December 4, 2018

11 Email Server In Production: Active Development:
December 4, 2018 Server In Production: Over 7,000 active accounts Delivery times less than 1 minute  Active Development: Calendar Server Native List Administration Full RHSD Interoperability Full RHSD Interoperability – Currently designed as separate projects that fit under our infrastructure. Full Interoperability would make the software projects aware of each other and would offer a centralized web administration interface. December 4, 2018

12 Domain Controller RH Linux Domain Controller (RHLDC):
December 4, 2018 Domain Controller RH Linux Domain Controller (RHLDC): Roaming Profiles (Windows & UNIX Clients) UNIX Domain as well (Instead of NIS) Text-based Administration & Native tools Migration Tool (NT Domain to RHLDC Domain) Domain Trusts Password Sync with Primary LDAP Preference toward text-based (opposed to Native Tools) due to the UNIX domain functionality that the Native NT tools do not account for. December 4, 2018

13 Domain Controller In Production: Active Development:
December 4, 2018 Domain Controller In Production: Being Tested for Student Network Rollout Consideration to move to Master Domain Model For Staff Domains  Active Development: User Web Portal (Domain access via web) Dynamic DNS / DHCP NT-like ACLS Student Network Rollout – Mention we’re working on interoperability with free radius for Wireless network authentication NT-Like ACLS so the LDC is more like a native Fileserver in addition to DC December 4, 2018

14 Commerce Server Current Features: Secure Client Portal
December 4, 2018 Commerce Server Current Features: Secure Client Portal Administrative Menu Image or text based shopping cart Multiple payment and shipping options Random presentation of sales items Customer Newsletter functionality Mention bookstore usage briefly so it doesn’t seem too non-sequitor. December 4, 2018

15 Commerce Server Proposed for University Bookstore
December 4, 2018 Commerce Server Proposed for University Bookstore LDAP-Synchronized for Billing Information, etc. Automatic Booklist import to shopping cart December 4, 2018

16 Other Projects RHDW (Desktop Workstation): SysAdmin Portal:
December 4, 2018 Other Projects RHDW (Desktop Workstation): Linux Desktop client for RHLDC SysAdmin Portal: Server Inventory and Logging Portal Portal – for better combined communication. Jeffline replacement a middleware application capable of maintaining authorization lists for various smaller applications such as OVID and our Card Catalog system, etc. December 4, 2018

17 Open Source and the LDAP Enabled University
December 4, 2018 Open Source and the LDAP Enabled University Demonstration Presentation of Products and Questions.

18 Copyright Statement Copyright John Page, This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial, educational purposes, provided that this copyright statement appears on the reproduced materials and notice is given that the copying is by permission of the author. To disseminate otherwise or to republish requires written permission from the author. December 4, 2018

Download ppt "Open Source and the LDAP Enabled University"

Similar presentations

A Successful Help Desk Process for all IT Support

A Successful Help Desk Process for all IT Support
Administrative Data and Curricular Support: The Sum is Greater Than the Parts NERCOMP 2004 Copyright Bret Ingerman, Daniel Green, and Beth DuPont, 2004.

Administrative Data and Curricular Support: The Sum is Greater Than the Parts NERCOMP 2004 Copyright Bret Ingerman, Daniel Green, and Beth DuPont, 2004.
Office of Information Technology Affiliates/Guests – Who are these people and how do we give them services? Copyright, Barbara Hope, University of Maryland,

Office of Information Technology Affiliates/Guests – Who are these people and how do we give them services? Copyright, Barbara Hope, University of Maryland,
Student, Faculty, and Staff Data Availability and Protection What’s the Back-Up Plan? (for academic computing) Sponsored by.

Student, Faculty, and Staff Data Availability and Protection What’s the Back-Up Plan? (for academic computing) Sponsored by.
Cut Costs and Increase Productivity in your IT Organization with Effective Computer and Network Monitoring. Copyright © T3 Software Builders, Inc 2004.

Cut Costs and Increase Productivity in your IT Organization with Effective Computer and Network Monitoring. Copyright © T3 Software Builders, Inc 2004.
The Academic Computing Assessment Data Repository: A New (Free) Tool for Program Assessment Heather Stewart, Director, Institute for Technology Development,

The Academic Computing Assessment Data Repository: A New (Free) Tool for Program Assessment Heather Stewart, Director, Institute for Technology Development,
Microsoft ® Exchange Online Migration and Coexistence Name Title Microsoft Corporation.

Microsoft ® Exchange Online Migration and Coexistence Name Title Microsoft Corporation.
Active Directory: Final Solution to Enterprise System Integration

Active Directory: Final Solution to Enterprise System Integration
Shopping and ORM Solutions

Shopping and ORM Solutions
Understanding Networks I. Objectives Compare client and network operating systems Learn about local area network technologies, including Ethernet, Token.

Understanding Networks I. Objectives Compare client and network operating systems Learn about local area network technologies, including Ethernet, Token.
Chapter 4 Introduction to Active Directory and Account Management

Chapter 4 Introduction to Active Directory and Account Management
Chapter 12 Reading assignment n From “Running Linux”, on reserve at PSU Main library (2-hour checkout) Chapter 1 (pages 1 through 41)Chapter 1 (pages 1.

Chapter 12 Reading assignment n From “Running Linux”, on reserve at PSU Main library (2-hour checkout) Chapter 1 (pages 1 through 41)Chapter 1 (pages 1.
The Homegrown Single Sign On (SSO) Project at UM – St. Louis.

The Homegrown Single Sign On (SSO) Project at UM – St. Louis.
Www.docfinity.com Copyright C. Grier Yartz 2005. This work is the intellectual property of the author. Permission is granted for this material to be shared.

Copyright C. Grier Yartz This work is the intellectual property of the author. Permission is granted for this material to be shared.
Copyright Anthony K. Holden, 2003. This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial,

Copyright Anthony K. Holden, This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial,
Wireless LANs A Case Study of Baylor University’s Wireless Network Copyright Bob Hartland 2002 This work is the intellectual property of the author. Permission.

Wireless LANs A Case Study of Baylor University’s Wireless Network Copyright Bob Hartland 2002 This work is the intellectual property of the author. Permission.
Web Portal Development with uPortal or.Net Midwest Educause: March 24-26, 2003 David B. Williams Mark Troester

Web Portal Development with uPortal or.Net Midwest Educause: March 24-26, 2003 David B. Williams Mark Troester
Western Illinois University - Electronic Student Services Copyright Statement Copyright Western Illinois University – Electronic Student Services 2001.

Western Illinois University - Electronic Student Services Copyright Statement Copyright Western Illinois University – Electronic Student Services 2001.
Moving Your Paperwork Online Western Washington University E-Sign Web Forms Copyright Western Washington University, 2004. This work is the intellectual.

Moving Your Paperwork Online Western Washington University E-Sign Web Forms Copyright Western Washington University, This work is the intellectual.
Understanding Active Directory

Understanding Active Directory

Similar presentations

Ads by Google