1 Identity Management experiences from real life Prof. Dr. Gerhard Schneider freiburg.de
2 The scenario Why do we need an identity management? What is the problem? How to do it? How to endorse (enforce?) it? How to get added value? Make it a self propelling solution... Today s target: management insight no technical course
3 The structure of German universities a humoristic description This makes a university a powerful Depends a bit on the State Professors are in the center of attention A German professor can do everything Teaching, research, administration And will do it Interfere in admin. questions Institutes and Faculties are the important structure institution working for the better of society probably the best solution we have Central administration is a nuisance The Rector is supposed to find more money and let the faculties spend it A powerful rector appears to be a threat
4 consequences Our universities cannot be run like companies A CIO cannot order the introduction of new services So introduce useful services without asking Real challenge you must succeed : ) And be fast Faster than the other side Example: Identity Management Administration has the relevant data The faculties and other organisations need it Even if they do not know this
5 The situation Administration knows everything about Staff with valid work contracts Remember this? Matriculated students Feed that data into the standard LDAP Like reading punched cards containing changes Users are allowed to modify other data on LDAP Which is mirrored back into the official systems Like adresses or phone numbers, or...
6 Identity management basic conceptsit touches real life! Dealing with genuine user data Only export a minimal set of data (what is necessary? Why??) Most ID based procedures do not need a view on all available data It works!! The true bottlenecks can now be identified Any ready to run solution will show up bottlenecks when operational 6
7 Alternatives from real life (as taught in class) Evaluate existing id management solutions Choose the best What is the best who decides? Buy hardware and software, trial runs Install upgrades for the software Enforce the solution onto the active players They will be extremely happy and love you : ) After the first runs under real conditions you will need new hardware Months or years of unstable operation
8 Get going! Add more value to convince the crowd We now know who is an active member of the university Feed this information into the database for the electronic doorlocks Only the existence not the rights nor the rôle Why? Real life IT don t pile too much power onto one system If people leave the uni, doors will be locked for them Rights management will still be done in the corresponding system by the people in charge Almost automatic question: can we manage the university card in LDAP? This makes life easier for the doorlocks and for the administration
9 Doorlocks why are they interesting? doorlocks= real access Make sure that an ex user can no longer get into security relevant rooms! Chemistry labs Animal experiments Dean s office Parking lots Online solutions and offline solutions Download the rights for today onto card Offline versions G. Schneider / DAAD summer school / Curitiba 9 Check LDAP before downloading the daily access rights!
10 experiences The central keycard system has its own database No way to chance this no online check vs. LDAP Pay money to the company to have an import interface like in the old punched card days Data is not available in real time but within 24 hours. Which is enough for a university Präsentation / Referentin / Fakultät oder Institut 10
11 The university card For payment Work time management Rudimentary access control to main doors and parking lots At first lack of a killer application Now more and more features are added G. Schneider / DAAD summer school / Curitiba 11
12 Functions of our UniCard Copier printer Time control Library card Reference for public transport tickets Authentisierung, (Digital signatur) Students updating their data Mensa / Cafeteria Access control 12
13 Get going!! Electronic mailing lists addresses are collected because electronic processes rely on them Self service administration Warn about expiry of book loans in the library Collect rather than assign People s private adresses will be read, those assigned by the university not necessarily Well, you could legally enforce this, but this is extra work Why fight legal battles if they are not necessary? Grant the right to sign off Otherwise there is always one who will complain We can now reach people again
14 Get going!!! VoIP: new phones show who is calling Okay, this is old stuff for private users but you have to maintain your own database New phone system talks to LDAP People can put their data (i.e. the data they want to be displayed) into LDAP Using their existing account Saves endless discussions about what should be displayed. If you want to display the name/picture of MickeyMouse why not? Your colleagues will comment, not the CC
15 Get going!!! Offer digital certificates Run the DFN solution and check the existence of some applicant via the LDAP database The library needs to know the members of the university For deciding on whether to grant access to electronic journals Use shibboleth as tool Offer a solution which gives you a shibboleth ticket via userid/passwd versus the LDAP An important tool it requires a working identity management wait a few slides
16 Get going!!!! E learning: new learning management software Buy it with LDAP connectivity Students need the id which also opens the WLAN Convince the administration to use the id for access to the electronic course/marks/exam system Students need the id which also opens the WLAN Thus set up a working infrastructure which is good for more Master online a new venture for the university Funding secured against fierce competition, thanks to...
17 Judging the effort The solution sometimes reminds my of an old battered car held together with sticky tape But the car is successfully on the race course, doing round after round While the others are still in their boxes, under service We start to understand what we really need And we will be able to buy an industrial system when needed and necessary Main effort: getting everybody to drive their systems in a systematic manner Writing the connector scripts is easy
18 Who is in the driving seat? Start a political process (rectorate, senate)?? Just do it?? IT people in the admin IT centre, scientific computer centre can cooperate If theya want Conspiracy??? Be aware! Do it with cover from the rectorate! Make the CC boss vice rector Win a few prizes And then never change a running process
19 Fundamental prerequisite to success Find out Where you have authoratative data And how to synchronize reliably Perhaps by writing orders to people Do not force people to disclose information Only to please your setup prove it is necessary It is all about organisation We do not teach this enough in our courses And tend to use yet another system Or are asked to use yet another system By those who do not understand but think that dirty solutions can never work
20 Don t overdo it! Do not abuse your data Don t send out many s on the mailing lists Or people will sign off Don t sell the list to others Don t do advertising for others Always allow for manual interaction If the system can t do it Like /accounts for new, not yet appointed profs People will only give you their data, if they feel secure about it.
21 Intermediate summary Introduce a new service Do not alter existing solutions Make sure that the responsibility for updating data is clearly laid out Ensure that existing services use the new data management Wlan, shibboleth, Ensure that new services do use the data management Electronic doors, elearning, digital certificates Move faster than the competitors in the faculty So they can't keep up with you
22 Shibboleth what do we want? User view Access to licensed material should be possible independent of the actual work place or the access method. All licensed contents should be avaiable after one initial login (Single Sign On). No personal data should be handed to third parties Institutional view (e.g. universities) Institution should be allowed to choose any local authentification scheme. But it must have an Identity Management System (IdM) Content provider The contents licensed from content providers must be protected against unauthorized access.
23 What is Shibboleth?? Shibboleth is an Internet2/MACE project (MACE = Middleware Architecture Committee for Education) Shibboleth develops and provides: architecture (protocols and profiles), structures for guidelines Open Source Implementation for a cross institutional access to protected (www)resources Shibboleth is based on a federated approach: Each institution administers and authenticates its members and the contents provider controls access to his resources. The following slides were provided by the Freiburg University Library
24 5 reasons for Shibboleth Cross institutional Single Sign On Authorisation and access control via attributes with the added possibility to access contents anonymously or with pseudonyms Based on well established software and standards (SAML: XML, SOAP, TLS, XMLsig, XMLenc) Integration into an existing IdM and into (webbased) applications is in most cases relatively easy High acceptance worldwide, especially with commercial publishers (Elsevier, JSTOR, EBSCO, Ovid, GBI, CSA,...)
25 How does it work? user (5) Login (3) First contact Localising service (WAYF, IdP Discovery) (6) (4) (1) Content provider User logged on? (2) no user permissions ok? Home institution (7) (8) no yes (9) grant deny access
26 Shibboleth how does it work? Future contact (same provider) (1) Content provider User known? (2) yes user User permissions ok? (7) no yes (9) grant deny access 13./ Ato Ruppert
27 Shibboleth how does it work? user Future contact different provider (3) Localising service (WAYF, IdP Discovery) (6) (4) (1) (2) Content provider User known? no user has access rights? Home institution (7) (8) no yes (9) grant deny access
28 The federation DFN AAI Why is there a problem? The content provider must trust the user It is all about money. trust in business language means: contract. You have to implement legally binding rules and the rector has to sign them. You need binding rules for the technical operations part. DFN AAI is a service of the DFN (explained later) for scientific institutions and also for (commercial) content providers. DFN AAI provides the necessary basis of trust and an organisatorial and technical framework for the exchange of user information betwenn the many users and the large number of content providers
29 SingleSignOn usage cases (Germany) Access to protected (especially commercial) electronic contents: E papers, data bases, e portals,... Portals (e.g.. vascoda, ReDI) DFG national licenses Repositories e Learning e Science Administrative systems Grid Computing Remember the grant access problem?
30 The mylogin project of Freiburg University Basis: Based on the IdM System of Freiburg Uni there exists myaccount for self administration of the individual Uni account Many (internal) applications use the central IdM via LDAP aim: Build a Single Sign On environment for these applications Unified authenification and authorisation methods Hide LDAP behind a metaframe (IdP) No more login data in decentral applications (privacy.) partners: University library (AAR): runs Shibboleth University IT centre (URZ): runs Uni LDAP Clinical IT centre (KRZ): runs KRZ LDAP Rektorate (D1): IdM data provider Time frame: Start march 2007 Start of operation Constantly expanded to new services.
31 The mylogin project of Freiburg University E Learning Library services Personalized services Seminars E Mail IdM Adminstrative systems
32 The mylogin project of Freiburg University E Learning library services personalized services Single SignOn with Shibboleth, A login for all services Seminars E Mail Administrative systems
33 The missing link: PKI Public key infrastructure Certificate authority CA Registration authority RA Certificate revocation list CRL Directory service Validation authority VA Alternative approach: PGP Trust the friends of my friends Hard to control, hard to break But: who is legally liable?? Certificate policy Certification practice statement Policy disclosure statement Strong hierarchy Solution to why should I trust someone I don t know G. Schneider / DAAD summer school / Curitiba 33
34 Do it yourself PKI? Nice to do from the scientific gain experience point of view But: who is interested? With your own PKI you are pretty alone You need a larger infrastructure which has standard contracts and conditions with you can do external negotiations due to internal standards like Have the root certificate in the browsers you can trust and which trusts you In Germany, DFN is the partner for the universities and is settled under the root certificate of Deutsche Telekom G. Schneider / DAAD summer school / Curitiba 34
35 DFN PKI (Germany) We can now issue certificates Generated by DFN no own infrastructure required Check passport before handing it over Thus ID problem solved Thanks to the generally accepted provider we can join the world wide Shibboleth federation And the library can sign contracts with publishers on a reliable basis Suddenly everything fits together and makes sense Problem: the high ranks have no idea about the complexity and won t appreciate the result G. Schneider / DAAD summer school / Curitiba 35
FernUniversität in Hagen: Certification Authority (CA) Certification Practice Statement VERSION 1.1 Ralph Knoche 18.12.2009 Contents 1. Introduction... 4 1.1. Overview... 4 1.2. Scope of the Certification
A Federated Authorization and Authentication Infrastructure for Unified Single Sign On Sascha Neinert Computing Centre University of Stuttgart Allmandring 30a 70550 Stuttgart firstname.lastname@example.org
ShibboLEAP Project Final Report: School of Oriental and African Studies (SOAS) Colin Rennie May 2006 Shibboleth Implementation at SOAS Table of Contents Introduction What this document contains Who writes
Authentication and Authorisation for Research and Collaboration Federations 101 An Introduction to Federated Identity Management Peter Gietz, Martin Haase AARC NA2 Task 2 - Outreach and Dissemination DAASI
Administration Guide BlackBerry Enterprise Service 12 Version 12.0 Published: 2015-01-16 SWD-20150116150104141 Contents Introduction... 9 About this guide...10 What is BES12?...11 Key features of BES12...
PKI Tutorial Jim Kleinsteiber February 6, 2002 Page 1 Outline Public Key Cryptography Refresher Course Public / Private Key Pair Public-Key Is it really yours? Digital Certificate Certificate Authority
Evaluation of different Open Source Identity management Systems Ghasan Bhatti, Syed Yasir Imtiaz Linkoping s universitetet, Sweden [ghabh683, syeim642]@student.liu.se 1. Abstract Identity management systems
IGI Portal architecture and interaction with a CA- online Abstract In the framework of the Italian Grid Infrastructure, we are designing a web portal for the grid and cloud services provisioning. In following
CA Performance Center Single Sign-On User Guide 2.4 This Documentation, which includes embedded help systems and electronically distributed materials, (hereinafter referred to as the Documentation ) is
Identity Management Critical Systems What is Identity Management? Identity: a set of attributes and values, which might or might not be unique Storing and manipulating identities Binding virtual identities
Authentication Methods Overview In addition to the OU Campus-managed authentication system, OU Campus supports LDAP, CAS, and Shibboleth authentication methods. LDAP users can be configured through the
INTEGRATION GUIDE DIGIPASS Authentication for Salesforce using IDENTIKEY Federation Server Disclaimer Disclaimer of Warranties and Limitation of Liabilities All information contained in this document is
Digital Certificates (Public Key Infrastructure) Reshma Afshar Indiana State University October 2015 1 List of Figures Contents 1 Introduction 1 2 History 2 3 Public Key Infrastructure (PKI) 3 3.1 Certificate
HKUST CA Certification Practice Statement IN SUPPORT OF HKUST CA CERTIFICATION SERVICES Version : 2.1 Date : 12 November 2003 Prepared by : Information Technology Services Center Hong Kong University of
SchoolBooking SSO Integration Guide Before you start This guide has been written to help you configure SchoolBooking to operate with SSO (Single Sign on) Please treat this document as a reference guide,
SEZ SEZ Online Manual Digital Signature Certficate [DSC] V Version 1.2 Table of Contents 1 Introduction...2 2 Procurement of DSC...3 3 Installation of DSC...4 4 Procedure for entering the DSC details of
ש בולת SD Departmental Meeting November 28 th, 2006 Ale de Vries Product Manager ScienceDirect Elsevier Shi... whát? : Shibboleth ש בולת [...] "stream, torrent". It derives from a story in the Hebrew Bible,
Business Introduction Script Introduction Hi NAME, this is YOUR NAME from Online Business Systems. We had an appointment set up to discuss the details of our work from home business. Are you still available
Callika Internet Telephony Voice Over IP (VoIP) Private Label Reseller Program Start selling VoIP services with no minimum investment no equipment purchases no hidden fees 1 888 276 8881 email@example.com
Overview of DFN`s Certificate Services - Regular, Grid and short-lived - Marcus Pattloch (DFN-Verein) DESY Computing Seminar 13. July 2009, Hamburg Overview Certificates what are they good for (and what
Information Rights Management EDRM Enterprise Digital Rights Management vs DFP Data Flow Protection E.ON IS, Thilo Müller April 2008 EIC 2008 Agenda E.ON IS Introduction DRM and DFP Definition Use Case
C E N T R I F Y D E P L O Y M E N T G U I D E Centrify Cloud Connector Deployment Guide Abstract Centrify provides mobile device management and single sign-on services that you can trust and count on as
Computer Systems Security 2013/2014 Single Sign-On Bruno Maia firstname.lastname@example.org Pedro Borges email@example.com December 13, 2013 Contents 1 Introduction 2 2 Explanation of SSO systems 2 2.1 OpenID.................................
Welcome to the ALT call center Please make sure that you go through this entire document and set up everything before you get started taking calls in the call center. Once you have everything set up and
MathXL Getting Started Guide for Instructors Copyright Notice Copyright 2013 by Pearson Education. All rights reserved. No part of the contents of this book may be reproduced or transmitted in any form
Certificates Noah Zani, Tim Strasser, Andrés Baumeler Overview Motivation Introduction Public Key Infrastructure (PKI) Economic Aspects Motivation Need for secure, trusted communication Growing certificate
Identity Federation For Authenticating and Authorizing Researchers Cletus Okolie NOC Manager Eko-Konnect Research and Education Initiative Outline What are IdFs? IdF components Software Packages for IdF
BlackBerry Enterprise Service 10 Secure Work Space for ios and Android Version: 10.1.1 Security Note Published: 2013-06-21 SWD-20130621110651069 Contents 1 About this guide...4 2 What is BlackBerry Enterprise
Technical Data Sheet DirX Identity V8.4 Secure and flexible Password Management DirX Identity provides a comprehensive password management solution for enterprises and organizations. It delivers self-service
Shibboleth : An Open Source, Federated Single Sign-On System David E. Martin firstname.lastname@example.org International Center for Advanced Internet Research Outline Security Mechanisms Access Control Schemes
GRAVITYZONE HERE Deployment Guide VLE Environment LEGAL NOTICE All rights reserved. No part of this document may be reproduced or transmitted in any form or by any means, electronic or mechanical, including
Sophos Mobile Control SaaS startup guide Product version: 6 Document date: January 2016 Contents 1 About this guide...4 2 About Sophos Mobile Control...5 3 What are the key steps?...7 4 Change your password...8
Identity Management in Liferay Overview and Best Practices Liferay Portal 6.0 EE Table of Contents Introduction... 1 IDENTITY MANAGEMENT HYGIENE... 1 Where Liferay Fits In... 2 How Liferay Authentication
Development of a file-sharing system for educational collaboration among higher-education institutions Takuya Matsuhira, Yoshiya Kasahara, and Yoshihiro Takata Abstract Opportunities for educational, research-oriented,
Identity Management and Shibboleth h at MSU Jim Green Manager, Identity Management Michigan State t University it Academic Technology Services Identity Management Definition: Identity management is the
GENI Security Architecture GEC4 Stephen Schwab, Alefiya Hussain Miami, Florida 1 Outline Overview of Security Architecture Draft Work in progress Observations About Candidate Technologies Considerations
Chapter 75 Configuring SAP NetWeaver AS Java SAP NetWeaver Application Server ("AS") Java (Stack) is one of the two installation options of SAP NetWeaver AS. The other option is the ABAP Stack, which is
Information Security Animations Cloud Service Case Study (Script) First Set Setting: At a Trading Company (A trading company s staff, Ken, is opening the office s door) Ken: Boss, what happened? Mr. Chung:
Active-client based identity management Chris Mitchell Royal Holloway, University of London www.chrismitchell.net 1 Acknowledgements This is joint work with Haitham Al-Sinani, also of Royal Holloway. 2
If you are looking for more control of your public key infrastructure, try the powerful Dogtag certificate system. BY THORSTEN SCHERF symmetric cryptography provides a powerful and convenient means for
Rheinisch-Westfälische Technische Hochschule Aachen Lehrstuhl für Informatik IV Prof. Dr. rer. nat. Otto Spaniol Identity Management im Liberty Alliance Project Seminar: Datenkommunikation und verteilte
Global Banking and Bill Pay Quick Start User Guide 468 Industrial Way West Eatontown, NJ 07724 www.fafcu.com 2 Logging in Logging in to Global Banking is as easy as one, two, three. Just launch your web
Chapter 108 Configuring SAP NetWeaver Fiori The following is an overview of the steps required to configure the SAP NetWeaver Fiori Web application for single sign-on (SSO) via SAML. SAP NetWeaver Fiori
Our 24 tips to get you trading online in 24 hours With e-commerce growing by 14% this year in the UK and online shopping figures at an all time high, there has never been a better time to set your business
Getting Started with Single Sign-On I. Introduction Your institution is considering or has already purchased Collaboratory from Treetop Commons, LLC. One benefit provided to member institutions is Single
Technical Data Sheet DirX Identity V8.5 Secure and flexible Password Management DirX Identity provides a comprehensive password management solution for enterprises and organizations. It delivers self-service
Accountant Guide Includes everything you need to know to get started as a Clear Books Accounting Partner Digital Edition Get ready to experience fast, reliable and secure accounting software that is easy
Digital Signature x Introduction In recent years, use of digital or electronic signatures has rapidly increased in an effort to streamline all types of business transactions. There are two types of electronic
AAA for IMOS: Australian Access Federation & related components James Dalziel Professor of Learning Technology, and Director, Macquarie E-Learning Centre Of Excellence (MELCOE) Macquarie University email@example.com
Enabling SSL and Client Certificates on the SAP J2EE Engine Angel Dichev RIG, SAP Labs SAP AG 1 Learning Objectives As a result of this session, you will be able to: Understand the different SAP J2EE Engine
Entrust IdentityGuard Comprehensive Entrust IdentityGuard Comprehensive is a five-day, hands-on overview of Entrust Course participants will gain experience planning, installing and configuring Entrust
firstname.lastname@example.org Agenda Strongly Recommend: Knowledge of ArcGIS Server and Portal for ArcGIS Security in the context of ArcGIS Server/Portal for ArcGIS Access Authentication Authorization: securing web services
Title: A Client Middleware for Token-Based Unified Single Sign On to edugain Sascha Neinert Computing Centre University of Stuttgart, Allmandring 30a, 70550 Stuttgart, Germany e-mail: email@example.com
Made for MSPs by an MSP features & Pricing Guide THE END OF STICKY NOTE SECURITY www.passportalmsp.com lower costs improve security increase sales A cloud-based identity and password management solution
Team Foundation Server 2013 Installation Guide Page 1 of 164 Team Foundation Server 2013 Installation Guide Benjamin Day firstname.lastname@example.org v1.1.0 May 28, 2014 Team Foundation Server 2013 Installation Guide
Dell One Identity Cloud Access Manager 8.0.1 - How to Configure for SSO to SAP NetWeaver using SAML 2.0 May 2015 About this guide Prerequisites and requirements NetWeaver configuration Legal notices About
SharePoint 2010 Bootcamp This five-day course is designed to equip Systems Administrators, Integrators and Developers with a strong foundation for implementing solutions on Microsoft SharePoint 2010. Attendees
HELP DOCUMENTATION E-SSOM INSTALLATION GUIDE Copyright 1998-2013 Tools4ever B.V. All rights reserved. No part of the contents of this user guide may be reproduced or transmitted in any form or by any means
The OIOSAML Toolkits Accelerating a common egov infrastructure using open source reference implementations OSOR.eu eid/pki/esignature Community Workshop in Brussels, 13. November 2008 IT Infrastructure
Federated Identity Management AKA, Identity Federation or just Federation Siju Mammen SANReN 28th March 2013 Table of contents What is Federation? Main Actors in the Federation game Research and Education
About SAML SSO Solution, page 1 SAML-Based SSO Features, page 2 Basic Elements of a SAML SSO Solution, page 2 SAML SSO Web Browsers, page 3 Cisco Unified Communications Applications that Support SAML SSO,
This chapter provides information about the Security Assertion Markup Language (SAML) Single Sign-On feature, which allows administrative users to access certain Cisco Unified Communications Manager and
Index Data's MasterKey Connect Product Description MasterKey Connect is an innovative technology that makes it easy to automate access to services on the web. It allows nonprogrammers to create 'connectors'
WarmMarket ScriptIdeas Warm Market Scripts Ideas. Schedule a time to talk with them soon after they get the information. Follow-up is the key to success. See some ideas. Speak to your upline support and
Single Sign On and ID Management Single Sign On SSO & ID Management for Web and Mobile Applications Presenter: Manish Harsh Program Manager for Developer Marketing Platforms of NVIDIA (Visual Computing
Technical Brief Qlik Sense Enabling the New Enterprise Generations of Business Intelligence The evolution of the BI market can be described as a series of disruptions. Each change occurred when a technology
Masdar Institute Single Sign-On: Standards-based Identity Federation John Mikhael ICT Department email@example.com Agenda The case for Single Sign-On (SSO) Types of SSO Standards-based Identity Federation
FedGIS Conference February 24 25, 2016 Washington, DC ArcGIS Server and Portal for ArcGIS An Introduction to Security Michael Sarhan & Bill Major Using Portal with ArcGIS Server Portal Server Portal and
Chapter 128 Office 365 deployment checklists This document provides some checklists to help you make sure that you install and configure your Office 365 deployment correctly and with a minimum of issues.
Host Access Management and Security Server Evaluation Guide Host Access Management and Security Server Evaluation Guide 12.2 Copyrights and Notices Copyright 2015 Attachmate Corporation. All rights reserved.
Caesar CRM CRM - your way Driven by a passion to develop our customers, SuperOffice has become one of Europes leading providers of CRM solutions. Do you want to increase your sales, customer loyalty and
OLAT - Online Learning And Training AAI Info-Day 7. December 2004 Florian Gnägi, Mike Stock Multimedia & E-Learning Services, University of Zurich 1 Agenda AAI implementation in OLAT Goals Workflow and
Implementing Secure Sockets Layer on iseries Presented by Barbara Brown Alliance Systems & Programming, Inc. Agenda SSL Concepts Digital Certificate Manager Local Certificate Authority Server Certificates
CA Single Sign-On r12.x (CA SiteMinder) Implementation Proven Professional Exam (CAT-140) Version 1.4 - PROPRIETARY AND CONFIDENTIAL INFORMATION - These educational materials (hereinafter referred to as
70 299 Implementing and Administering Security in a Microsoft Windows Server 2003 Network Course Number: 70 299 Length: 1 Day(s) Course Overview This course is part of the MCSA training.. Prerequisites
White Paper Enterprise File Serving 2.0 Anywhere, Any Device File Access with IT in Control Like it or not, cloud- based file sharing services have opened up a new world of mobile file access and collaborative
OMS Essentials User Guide Table of Contents Chapter 1: Understanding OMS architecture...4 Chapter 2: Understanding user accounts... 6 Chapter 3: Understanding user groups... 8 Chapter 4: How to configure
Enterprise Remote Control 5.6 Manual Solutions for Network Administrators Copyright 2015, IntelliAdmin, LLC Revision 3/26/2015 http://www.intelliadmin.com Page 1 Table of Contents What is Enterprise Remote
Frequently Asked Questions Aerohive ID Manager About the Product... 1 Ordering FAQs... 4 Product Strategy... 6 About the Product 1. What is ID Manager? ID Manager is Aerohive s new cloud-based guest management
Secure Web Appliance SSL Intercept Table of Contents 1. Introduction... 1 1.1. About CYAN Secure Web Appliance... 1 1.2. About SSL Intercept... 1 1.3. About this Manual... 1 1.3.1. Document Conventions...
Frequently Asked Questions About Mobile Banking/Deposit App What is the myazstcu Mobile App? The myazstcu Mobile App is a service that enables members to access their account information, make deposits,
Carillon eshop User s Guide Prepared by: Carillon Information Security, Inc. Version: 3.0 Updated on: 2015-01-29 Status: PUBLIC Contents Carillon eshop User Guide 1 Introduction... 4 1.1 Prerequisites...
SWITCHpki long lived grid user certificates PKI meeting in Bern Bern, 15 June 2010 Alessandro Usai firstname.lastname@example.org Trust Link Interface! Long lived grid user certificates are now handled by the
Federated Identity & Access Mgmt for Higher Education Dr. Erik Vullings Program Manager Macquarie University s s E-Learning E Centre of Excellence (MELCOE) Erik.Vullings@melcoe.mq.edu.au 1/23/2006 1 Backing
Performance Characteristics of Data Security Valid from October 13 th, 2014 Copyright GmbH, A-4020 Linz, 2014. All rights reserved. All hardware and software names used are registered trade names and/or
1-bay NAS User Guide INDEX Index... 1 Log in... 2 Basic - Quick Setup... 3 Wizard... 3 Add User... 6 Add Group... 7 Add Share... 9 Control Panel... 11 Control Panel - User and groups... 12 Group Management...