Presentation is loading. Please wait.

Presentation is loading. Please wait.

Identity Management – Why and How Experiences at CU-Boulder Copyright Linda Drake, Director of Development and Integration, University of Colorado, Boulder,

Published byGeraldine Allen Modified over 9 years ago

Similar presentations

Presentation on theme: "Identity Management – Why and How Experiences at CU-Boulder Copyright Linda Drake, Director of Development and Integration, University of Colorado, Boulder,"— Presentation transcript:

1 Identity Management – Why and How Experiences at CU-Boulder Copyright Linda Drake, Director of Development and Integration, University of Colorado, Boulder, 2007 This work is the intellectual property of the author. Permission is granted for this material to be shared for non- commercial, educational purposes, provided that this copyright statement appears on the reproduced materials and notice is given that the copying is by permission of the author. To disseminate otherwise or to republish requires written permission from the author.

2 Why? Drivers for IdM Fundamental principle: role-based access Faculty: faculty course toolkit (email rosters, photo rosters, web grading) Students: registration, grades, financial aid Staff: address update, benefits enrollment, online pay advice Affiliate: library services (as a state resident), email Blended identity – combination of faculty, student, staff, affiliate roles from multiple sources

3 Why? Drivers for IdM Timeliness Services are available as soon as access is needed Access is automatically provisioned – no need to request Access is automatically deprovisioned when role changes

4 Why? Drivers for IdM Security Simplify password management and reset Workflow enforces policy – no “friends and family” program

5 Why? Drivers for IdM Administration Consolidate account management – AD, email, WebCT Simplify our environment, delegate management duties Replace home-grown and deprecated middleware solutions

6 Where are we and how did we get here? Directory Services (aka Enterprise IdM) 2001: implemented a campus-wide directory The “ED” – enterprise directory comprised of: Registry – relational database LDAP directories Blend identities from 3 major sources – Human Resources, Student Information System, “uniquid” (unix-based account management system) First service was “white pages” – online person directory

7 Where are we and how did we get here? Technology is easy – Policy is really hard Directory Services governance board – the key to success Define affiliations and associated services Require new services and applications to be directory- enabled http://www.colorado.edu/its/directoryservices/documents /policy.html On Beyond Z - http://www.educause.edu/ir/library/pdf/EQM0243.pdf

8 Where are we and how did we get here? Sun Identity Manager Purchased in 2005 after lengthy evaluation Implementing with aid from Aegis, USA consultants Phase I complete – hardware and software installed, LDAP adapter for new email system ready Next steps – replace “uniquid” account management system, develop provisioning adapter for WebCT CE 6.0, develop self-service tools (password mgmt, etc)

9 HR SIS CIW Registry Update Registry DB CU_People DB PLUS WebCT MetaMerge ED LDAP LDAP Directories Local copy WebCT Uniquid CS Rosters Student e-mail AD First dot Last Andy-Net Database Extracts Sponsored Entry IT Service & Support Managed Services IT Partners DURM Identity Management today Hesiod (DNS) CUConnect

10 Identity Management SIS HR LDAP Resources Database Resources Customer Nickname Identity Management future

11 Questions ?

Download ppt "Identity Management – Why and How Experiences at CU-Boulder Copyright Linda Drake, Director of Development and Integration, University of Colorado, Boulder,"

Similar presentations

A Successful Help Desk Process for all IT Support

A Successful Help Desk Process for all IT Support
For further information or copies of this presentation

For further information or copies of this presentation
Administrative Data and Curricular Support: The Sum is Greater Than the Parts NERCOMP 2004 Copyright Bret Ingerman, Daniel Green, and Beth DuPont, 2004.

Administrative Data and Curricular Support: The Sum is Greater Than the Parts NERCOMP 2004 Copyright Bret Ingerman, Daniel Green, and Beth DuPont, 2004.
What Does the Net Generation Expect From Us? SAC August 8, 2005 SAC August 8, 2005 Copyright © 2005, Joel L. Hartman. This work is the intellectual property.

What Does the Net Generation Expect From Us? SAC August 8, 2005 SAC August 8, 2005 Copyright © 2005, Joel L. Hartman. This work is the intellectual property.
Office of Information Technology Affiliates/Guests – Who are these people and how do we give them services? Copyright, Barbara Hope, University of Maryland,

Office of Information Technology Affiliates/Guests – Who are these people and how do we give them services? Copyright, Barbara Hope, University of Maryland,
Copyright Tom Parker, Ron DiNapoli, Andrea Beesing, Joy Veronneau 2004. This work is the intellectual property of the authors. Permission is granted for.

Copyright Tom Parker, Ron DiNapoli, Andrea Beesing, Joy Veronneau This work is the intellectual property of the authors. Permission is granted for.
Copyright Sylvia Maxwell and Michael White, 2007. This work is the intellectual property of the author. Permission is granted for this material to be shared.

Copyright Sylvia Maxwell and Michael White, This work is the intellectual property of the author. Permission is granted for this material to be shared.
On Beyond Z Building a Directory Service educause presentation #074 University of Colorado at Boulder Deborah Keyek-Franssen Marin Stanek Paula J. Vaughan.

On Beyond Z Building a Directory Service educause presentation #074 University of Colorado at Boulder Deborah Keyek-Franssen Marin Stanek Paula J. Vaughan.
Copyright Dickinson College 2008. This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial,

Copyright Dickinson College This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial,
1 Extending Authenticated Online Services with Friend Accounts at Washington State University Brian Foley Technology Architect/Application Developer.

1 Extending Authenticated Online Services with "Friend Accounts" at Washington State University Brian Foley Technology Architect/Application Developer.
Purdue University Calumet Enrollment Services Center Integrated Service Delivery In-person and on the Web Beth Pellicciotti Assistant Vice Chancellor Academic.

Purdue University Calumet Enrollment Services Center Integrated Service Delivery In-person and on the Web Beth Pellicciotti Assistant Vice Chancellor Academic.
Provisioning 101: Cutting Costs, Enhancing Security, and Improving Service David Lavenda VP Marketing & Product Strategy June 19, 2003 © Business Layers.

Provisioning 101: Cutting Costs, Enhancing Security, and Improving Service David Lavenda VP Marketing & Product Strategy June 19, 2003 © Business Layers.
Flexible Information Literacy Alternatives for Independent Learners Suzanne Hayes March 17, 2003 Copyright Suzanne Hayes 2003. This work is the intellectual.

Flexible Information Literacy Alternatives for Independent Learners Suzanne Hayes March 17, 2003 Copyright Suzanne Hayes This work is the intellectual.
Delivering Windows OS Updates at Yale with SUS EDUCAUSE Security Professionals Workshop May 17, 2004 Washington DC Ken Hoover, Systems Programmer

Delivering Windows OS Updates at Yale with SUS EDUCAUSE Security Professionals Workshop May 17, 2004 Washington DC Ken Hoover, Systems Programmer
UCB Enterprise Directory Services. Directory Services – Project History  Requirements defined  Project commission & goals articulated  Project teams.

UCB Enterprise Directory Services. Directory Services – Project History  Requirements defined  Project commission & goals articulated  Project teams.
Identity Management: The Legacy and Real Solutions Project Overview.

Identity Management: The Legacy and Real Solutions Project Overview.
Procurement From the 20 th to the 21 st Century Copyright Byron Honoré 2007. This work is the intellectual property of the author. Permission is granted.

Procurement From the 20 th to the 21 st Century Copyright Byron Honoré This work is the intellectual property of the author. Permission is granted.
Foundations of Excellence: Support Services for Online Learning Midwest Regional Conference, 2005 Chicago, Illinois Presenters: Diane Dates Casey Jan Engle.

Foundations of Excellence: Support Services for Online Learning Midwest Regional Conference, 2005 Chicago, Illinois Presenters: Diane Dates Casey Jan Engle.
Making the Pieces Fit Together Barbara Draude, Director, Academic and Instructional Technology Services Middle Tennessee State University Lisa Rogers,

Making the Pieces Fit Together Barbara Draude, Director, Academic and Instructional Technology Services Middle Tennessee State University Lisa Rogers,
Web Portal Development with uPortal or.Net Midwest Educause: March 24-26, 2003 David B. Williams Mark Troester

Web Portal Development with uPortal or.Net Midwest Educause: March 24-26, 2003 David B. Williams Mark Troester

Similar presentations

Ads by Google