Presentation is loading. Please wait.

Presentation is loading. Please wait.

Directory Architecture Plans and Status UNITS Meeting Feb 2005 Tom Board, Director, ISA.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Directory Architecture Plans and Status UNITS Meeting Feb 2005 Tom Board, Director, ISA."— Presentation transcript:

1 Directory Architecture Plans and Status UNITS Meeting Feb 2005 Tom Board, Director, ISA

2 Agenda Summary Motivators Progression of configurations LDAP Registry versus White Pages Technical issues Policies and unresolved issues

3 Summary Directory architecture is driven by application technologies and privacy rules Past configurations were not friendly to applications and couldn’t enforce privacy Future directories will expose information under community rules (NU policies) The industry continues to change directory services and we will need to adapt

4 Motivators 1.Reduce the cost to incorporate new technologies and software into the University 2.Ensure compliance with Federal laws governing privacy of information 3.Enforce elective privacy decisions by individuals under University policies

5 Progression of Directory Configurations

6 Circa 1995 Configuration

7 Server & Outlook Introductions

8 AD Introduction

9 Current Configuration

10 August 2005 Configuration

11 Windows 2003 Server R2

12 LDAP Registry vs. White Pages Registry is provisioned by SNAP –All access is reviewed and approved –Each application has a DN that defines access rules and items returned –No anonymous binds –All binding IP addresses known to the firewall

13 LDAP Registry vs. White Pages White Pages is replicated from the Registry –Web directory page is primary access –Anonymous binds must be allowed Content defined by source administrators Content will always be a subset of Web page –On-campus versus off-campus returns

14 Technical Issues Resolving the multiple identity problem Migrating to supportable provisioning of second-tier directories Defining the role of a central AD forest Deploying Shibboleth and Liberty Migrating to Windows Server 2003 AD R2 and federated authentication within NU

15 Existing Policies Single-forest-per-division architecture Handling of profile and locator information (in progress) –Source control over second-tier directories

16 Outstanding Policy Issues Who is represented in directories? What data items will be present for persons and when will they be exposed? When should privacy elections yield to: –a University academic system that is central to a student’s experience? –the University’s responsibility for personal safety?

17 Forthcoming Visible Changes Restricting punctuation in alias to hyphen, period, and underscore (April 3 rd ?) Change from server provisioning to AD synchronization (June?) Novell e-directory provisioning (June?) LDAP authenticators change to “registry.northwestern.edu” after HA configuration is completed (July?)

18 Questions?

Download ppt "Directory Architecture Plans and Status UNITS Meeting Feb 2005 Tom Board, Director, ISA."

Similar presentations

Meeting Agenda Preparation and Negative Resolution Scott Orthey.

Meeting Agenda Preparation and Negative Resolution Scott Orthey.
Next Generation Athens Services Ed Zedlewski UK e-Science Town Meeting, London, 11 April 2005.

Next Generation Athens Services Ed Zedlewski UK e-Science Town Meeting, London, 11 April 2005.
Presentation by Priyanka Sawarkar

Presentation by Priyanka Sawarkar
The Enterprise Guide to Video Conferencing Created using iThoughts [...] [...]

The Enterprise Guide to Video Conferencing Created using iThoughts [...] [...]
Agenda AD to Windows Azure AD Sync Options Federation Architecture

Agenda AD to Windows Azure AD Sync Options Federation Architecture
Whether you like it or not! Importance increases significantly with SharePoint 2013 Pretty much every investment area relies on Profiles for core.

Whether you like it or not! Importance increases significantly with SharePoint 2013 Pretty much every investment area relies on Profiles for core.
Access management for repositories: challenges and approaches for MAMS James Dalziel Professor of Learning Technology and Director, Macquarie E-Learning.

Access management for repositories: challenges and approaches for MAMS James Dalziel Professor of Learning Technology and Director, Macquarie E-Learning.
Prepared by Dept. of Information Technology & Telecommunication, May 1, 2015 DoITT Identity Management Security, Provisioning, Authentication.

Prepared by Dept. of Information Technology & Telecommunication, May 1, 2015 DoITT Identity Management Security, Provisioning, Authentication.
Identity & Access Management Project Tom Board February 2006.

Identity & Access Management Project Tom Board February 2006.
How to Succeed with Active Directory Robert Williams, PhD CEO Secure Logistix Corporation.

How to Succeed with Active Directory Robert Williams, PhD CEO Secure Logistix Corporation.
Information Technology Registry Services Security LDAP-based Attributes and Authentication.

Information Technology Registry Services Security LDAP-based Attributes and Authentication.
Information Technology Information Systems Architecture What’s new. What’s happening.

Information Technology Information Systems Architecture What’s new. What’s happening.
Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.

Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.
1 Identity Management and Access Control Status UNITS Forum, June 2006 Tom Board, NUIT Info Systems Architecture.

1 Identity Management and Access Control Status UNITS Forum, June 2006 Tom Board, NUIT Info Systems Architecture.
INNOV-5: Web Services Management and Monitoring Daniel M. Foody Chief Technology Officer, Sonic.

INNOV-5: Web Services Management and Monitoring Daniel M. Foody Chief Technology Officer, Sonic.
UCB Enterprise Directory Services. Directory Services – Project History  Requirements defined  Project commission & goals articulated  Project teams.

UCB Enterprise Directory Services. Directory Services – Project History  Requirements defined  Project commission & goals articulated  Project teams.
Peter Deutsch Director, I&IT Systems July 12, 2005

Peter Deutsch Director, I&IT Systems July 12, 2005
Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.

Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.
E-commerce security by Asif Dalwai 886 39 5409. Introduction E-commerce applications Threats in e-commerce applications Measures to handle threats Incorporate.

E-commerce security by Asif Dalwai Introduction E-commerce applications Threats in e-commerce applications Measures to handle threats Incorporate.
1 Enabling Secure Internet Access with ISA Server.

1 Enabling Secure Internet Access with ISA Server.

Similar presentations

Ads by Google