Presentation is loading. Please wait.

Presentation is loading. Please wait.

Integrating Oracle Collaboration Suite into the Identity Management Infrastructure Dan Malone Cal Poly, San Luis Obispo Integrating.

Published by Modified over 8 years ago

Similar presentations

Presentation on theme: "Integrating Oracle Collaboration Suite into the Identity Management Infrastructure Dan Malone Cal Poly, San Luis Obispo Integrating."— Presentation transcript:

1 Integrating Oracle Collaboration Suite into the Identity Management Infrastructure Dan Malone dmalone@calpoly.edu Cal Poly, San Luis Obispo Integrating Oracle Collaboration Suite into the Identity Management Infrastructure

2 Goals Provide a consistent user experience Provide a consistent user experience Provide account maintenance with minimal staff interaction Provide account maintenance with minimal staff interaction Follow ITS policies related to authentication and directory services Follow ITS policies related to authentication and directory services Integrate with existing infrastructure where possible Integrate with existing infrastructure where possible

3 Objectives Email address search against Enterprise directory for all clients Email address search against Enterprise directory for all clients Use established username and password Use established username and password Provide single sign-on by integrating with CAS Provide single sign-on by integrating with CAS Integrate non-web authentication with LDAP authentication Integrate non-web authentication with LDAP authentication Automate provisioning with well defined business rules based on enterprise data Automate provisioning with well defined business rules based on enterprise data

4 Directory Enterprise LDAP directory exists Enterprise LDAP directory exists Consistent search results across all clients Consistent search results across all clients Data protection already implemented Data protection already implemented –FERPA

5 Authentication Enterprise authentication services exist Enterprise authentication services exist –LDAP –CAS OCS has web as well as thick clients OCS has web as well as thick clients

6 Provisioning Fix the problems in the legacy provisioning processes Fix the problems in the legacy provisioning processes Provisioning Model Provisioning Model –It’s all about the data and managing the information Provisioning is based on information in the data warehouse Provisioning is based on information in the data warehouse –We can’t know how every application works Application owners are responsible for programming tasks on the application Application owners are responsible for programming tasks on the application

7 Provisioning Model

8 Project Information Implementation started in 2004 Implementation started in 2004 Involved many groups in ITS Involved many groups in ITS –Application Management –Information Management –User Support Services –Central Systems Support What expertise was needed? What expertise was needed? –Oracle, SQL, PL/SQL, PL/SQL Web Toolkit, working with Oracle Support –Understanding of web concepts Cookies Cookies Web forms Web forms –LDAP concepts –Know the data What tools were utilized? What tools were utilized? –PL/SQL D eveloper (http://www.allroundautomations.com/) –Browser Extensions ieHTTPHeaders – IE (http://www.blunck.info/) ieHTTPHeaders – IE (http://www.blunck.info/) Live HTTP Headers - Firefox Live HTTP Headers - Firefox Add N Edit Cookies - Firefox Add N Edit Cookies - Firefox

9 What is current status? What is current status? Calendar in production January 23 rd, 2005 Calendar in production January 23 rd, 2005 Email in production May 13 th, 2005 Email in production May 13 th, 2005 –Migration of users (25,000) in progress thru summer What worked as expected? What worked as expected? –Directory Integration –Oracle Single Sign-on integration –Provisioning What has not worked as expected? What has not worked as expected? –LDAP integration

10 Lessons learned? Authentication and Provisioning are dependent on each other Authentication and Provisioning are dependent on each other –Can not be done one at a time Not everyone thinks Identity Management is cool Not everyone thinks Identity Management is cool –Sometimes you need to just tell them what their code needs to do Policy makers did not step up to the plate Policy makers did not step up to the plate –Task of defining provisioning business rules fell on app admins –Business rules were difficult for the application administrators Learned general concepts about how Oracle applications work Learned general concepts about how Oracle applications work Implement debug logging much earlier Implement debug logging much earlier Don’t expect to have a test plan that covers everything Don’t expect to have a test plan that covers everything Browser tools were invaluable Browser tools were invaluable Enabling Single Sign-on is not the end Enabling Single Sign-on is not the end “It’s fixed in 10g” – Oracle “It’s fixed in 10g” – Oracle “It’s fixed in 10g Release 2” – Oracle “It’s fixed in 10g Release 2” – Oracle

11 What help could you offer another campus? What we have learned about OCS What we have learned about OCS Oracle Single Sign-on/CAS code Oracle Single Sign-on/CAS code Provisioning Model Provisioning Model

12 Questions? Dan Malone – dmalone@calpoly.edu Cal Poly, San Luis Obispo

Download ppt "Integrating Oracle Collaboration Suite into the Identity Management Infrastructure Dan Malone Cal Poly, San Luis Obispo Integrating."

Similar presentations

Implementing Tableau Server in an Enterprise Environment

Implementing Tableau Server in an Enterprise Environment
UTILIZING WITH ITA. offers an entire suite of benefits for you and your students. You can also set up s for the purpose.

UTILIZING WITH ITA. offers an entire suite of benefits for you and your students. You can also set up s for the purpose.
Agenda 2 factor authentication Smart cards Virtual smart cards FIM CM

Agenda 2 factor authentication Smart cards Virtual smart cards FIM CM
LLNL and LANL Portal Update Cathy Aaron, Lawrence Livermore National Laboratory Katherine Norskog, Los Alamos National Laboratory Presented at InterLab.

LLNL and LANL Portal Update Cathy Aaron, Lawrence Livermore National Laboratory Katherine Norskog, Los Alamos National Laboratory Presented at InterLab.
UCB Enterprise Directory Services. Directory Services – Project History  Requirements defined  Project commission & goals articulated  Project teams.

UCB Enterprise Directory Services. Directory Services – Project History  Requirements defined  Project commission & goals articulated  Project teams.
Integrating PeopleSoft and Oracle Collaboration Suite into uPortal June 13, 2005 Summer JA-SIG Baltimore, Maryland.

Integrating PeopleSoft and Oracle Collaboration Suite into uPortal June 13, 2005 Summer JA-SIG Baltimore, Maryland.
The Identity Management Collaborative: A SIMI Pilot Project Cal Poly San Luis Obispo California State University Stanislaus The Office of the Chancellor.

The Identity Management Collaborative: A SIMI Pilot Project Cal Poly San Luis Obispo California State University Stanislaus The Office of the Chancellor.
July 12, 2005 CSU SIMI Workshop - Melding Policy and Technology to Manage Identity1 Provisioning Services Collaborative CSU, East Bay and CSU, San Bernardino.

July 12, 2005 CSU SIMI Workshop - Melding Policy and Technology to Manage Identity1 Provisioning Services Collaborative CSU, East Bay and CSU, San Bernardino.
Peter Deutsch Director, I&IT Systems July 12, 2005

Peter Deutsch Director, I&IT Systems July 12, 2005
Identity and Access Management IAM A Preview. 2 Goal To design and implement an identity and access management (IAM) middleware infrastructure that –

Identity and Access Management IAM A Preview. 2 Goal To design and implement an identity and access management (IAM) middleware infrastructure that –
Business Productivity Online Suite Enterprise class software delivered via subscription services hosted by Microsoft and sold with partners.

Business Productivity Online Suite Enterprise class software delivered via subscription services hosted by Microsoft and sold with partners.
My Cal Poly uPortal Channel Technologies Chris Stavros Web Strategist Ken Sperow Application Developer California Polytechnic State University San Luis.

My Cal Poly uPortal Channel Technologies Chris Stavros Web Strategist Ken Sperow Application Developer California Polytechnic State University San Luis.
System Architecture University of Maryland David Henry Office of Information Technology December 6, 2002.

System Architecture University of Maryland David Henry Office of Information Technology December 6, 2002.
Identity Management and PKI Credentialing at UTHSC-H Bill Weems Academic Technology University of Texas Health Science Center at Houston.

Identity Management and PKI Credentialing at UTHSC-H Bill Weems Academic Technology University of Texas Health Science Center at Houston.
Project Implementation for COSC 5050 Distributed Database Applications Lab1.

Project Implementation for COSC 5050 Distributed Database Applications Lab1.
EDUCAUSE April 25, 2006Enforcing Compliance with Security Policies … Enforcing Compliance of Campus Security Policies Through a Secure Identity Management.

EDUCAUSE April 25, 2006Enforcing Compliance with Security Policies … Enforcing Compliance of Campus Security Policies Through a Secure Identity Management.
Enterprise SharePoint Service (ESPS) 17 August 2011 A Combat Support Agency Defense Information Systems Agency.

Enterprise SharePoint Service (ESPS) 17 August 2011 A Combat Support Agency Defense Information Systems Agency.
“This presentation is for informational purposes only and may not be incorporated into a contract or agreement.”

“This presentation is for informational purposes only and may not be incorporated into a contract or agreement.”
December 5, 2008 1 OBIEE Technical Conference Security Overview Dan Malone.

December 5, OBIEE Technical Conference Security Overview Dan Malone.
Active Directory at the University of Michigan Data Population and Kerberos Interoperability MaryBeth Stuenkel LAN/NOS/Groupware Services.

Active Directory at the University of Michigan Data Population and Kerberos Interoperability MaryBeth Stuenkel LAN/NOS/Groupware Services.

Similar presentations

Ads by Google