Gabriel Magariño. Software Engineer. gabriel.magarino@gmail.com. www.javapassion.com/idm. Overview Revisited



Similar documents
G Cloud 6 CDG Service Definition for Forgerock Software Services

Extending Identity and Access Management

Allidm.com. SSO Introduction. Discovering IAM Solutions. Leading the IAM facebook/allidm

Identity Governance Evolution

Identity Management with midpoint. Radovan Semančík FOSDEM, January 2016

Alex Wong Senior Manager - Product Management Bruce Ong Director - Product Management

White paper December Addressing single sign-on inside, outside, and between organizations

Ensuring the Security of Your Company s Data & Identities. a best practices guide

Integrating Hitachi ID Suite with WebSSO Systems

<Insert Picture Here> Oracle Identity And Access Management

Biometric Single Sign-on using SAML

Web Applications Access Control Single Sign On

AND SUN OPENSSO MICROSOFT GENEVA SERVER ENABLING UNPRECEDENTED COLLABORATION ACROSS HETEROGENEOUS IT ENVIRONMENTS. White Paper May 2009.

Biometric Single Sign-on using SAML Architecture & Design Strategies

NetIQ Access Manager 3.2 integration

Interoperable Provisioning in a Distributed World

GlassFish Security. open source community experience distilled. security measures. Secure your GlassFish installation, Web applications,

Oracle Identity Manager, Oracle Internet Directory

Delegated Administration Quick Start

Extranet Access Management Web Access Control for New Business Services

The Top 5 Federated Single Sign-On Scenarios

Oracle Enterprise Single Sign-on Technical Guide An Oracle White Paper June 2009

Accelerate Without Fear: Extend Your Enterprise with Identity Federation. Kirk Brown CTO, Identity Management Sun Microsystems

Citrix Password Manager 4.1

and the software then detects and automates all password-related events for the employee, including:

INUVIKA OPEN VIRTUAL DESKTOP FOUNDATION SERVER

Quest One Identity Solution. Simplifying Identity and Access Management

Softerra Adaxes Enterprise Directory Solution

Integrating EJBCA and OpenSSO

Avaya Aura System Manager

Access Management Analysis of some available solutions

OpenSSO: Simplify Your Single-Sign-On Needs. Sang Shin Java Technology Architect Sun Microsystems, inc. javapassion.com

Sun and Oracle: Joining Forces in Identity Management

Oracle Identity Management Concepts and Architecture. An Oracle White Paper December 2003

Security management White paper. Develop effective user management to demonstrate compliance efforts and achieve business value.

API-Security Gateway Dirk Krafzig

Cloud Standards. Arlindo Dias IT Architect IBM Global Technology Services CLOSER 2102

The Benefits of an Industry Standard Platform for Enterprise Sign-On

nexus Hybrid Access Gateway

PingFederate. SSO Integration Overview

EXECUTIVE VIEW. EmpowerID KuppingerCole Report. By Peter Cummings October By Peter Cummings

Automating User Management and Single Sign-on for Salesforce.com OKTA WHITE PAPER. Okta Inc nd Street Suite 350 San Francisco CA, 94107

Open Source Identity Management

Perceptive Experience Single Sign-On Solutions

Approaches to Enterprise Identity Management: Best of Breed vs. Suites

Understanding Enterprise Cloud Governance

Oracle Identity Manager (OIM) as Enterprise Security Platform - A Real World Implementation Approach for Success

NCSU SSO. Case Study

Oracle Privileged Account Manager 11gR2. Karsten Müller-Corbach

OracleAS Identity Management Solving Real World Problems

How to Overcome Challenges in Deploying Cloud Apps to Get the Most from your IAM Investment

For Managing Central Deployment, Policy Management, Hot Revocation, Audit Facilities, and Safe Central Recovery.

Tech Brief: Upgrading from Sun IAM to ForgeRock Open Identity Stack

Apache Syncope OpenSource IdM

SAP Business Objects Security

Service Updates and Enhancements

When millions need access: Identity management in an increasingly connected world

Single sign-on enabled OpenCms

Oracle Privileged Account Manager

SAML Security Option White Paper

White Paper Cybercom & Axiomatics Joint Identity & Access Management (R)evolution

Top 8 Identity and Access Management Challenges with Your SaaS Applications. Okta White paper

Password Management Before User Provisioning

Cloud Security/Access Control and Identity Management. Patrick McLaughlin, Oracle Fellow SAOUG: 14 November, 2011

Using LDAP Authentication in a PowerCenter Domain

PortWise Access Management Suite

Dropbox for Business. Secure file sharing, collaboration and cloud storage. G-Cloud Service Description

IBM Tivoli Access Manager and VeriSign Managed Strong Authentication Services. Combine resources for one complete online business security solution.

OpenAM. 1 open source 1 community experience distilled. Single Sign-On (SSO) tool for securing your web. applications in a fast and easy way

Leverage Your EMC Storage Investment with User Provisioning for Syncplicity:

TIBCO Spotfire Platform IT Brief

IBM Security & Privacy Services

How To Configure The Jasig Casa Single Sign On On A Workstation On Ahtml.Org On A Server On A Microsoft Server On An Ubuntu (Windows) On A Linux Computer On A Raspberry V

Migration Best Practices for OpenSSO 8 and SAM 7.1 deployments O R A C L E W H I T E P A P E R M A R C H 2015

PeopleSoft Enterprise Directory Interface

Directory Integration with Okta. An Architectural Overview. Okta White paper. Okta Inc. 301 Brannan Street, Suite 300 San Francisco CA, 94107

Research. Identity and Access Management Defined

Get Cloud Ready: Secure Access to Google Apps and Other SaaS Applications

Pentaho Enterprise and Community Editions Feature Comparison

Oracle Fusion Middleware

Single Sign-On. Security and comfort can be friend. Arnd Langguth. September, 2006

Protect Everything: Networks, Applications and Cloud Services

Oracle Identity and Access Management

Citrix MetaFrame Password Manager 2.5

Cayosoft Administrator. Modern Administration. Cayosoft.com. Unify, Simplify and Secure Microsoft Administration. Features at a Glance

Directory Integration with Okta. An Architectural Overview. Okta Inc. 301 Brannan Street San Francisco, CA

WHITE PAPER. Smart Card Authentication for J2EE Applications Using Vintela SSO for Java (VSJ)

Centralized Oracle Database Authentication and Authorization in a Directory

econtrol 3.5 for Active Directory & Exchange Administrator Guide

How the Quest One Identity Solution Products Enhance Each Other

IBM Tivoli Access Manager for Enterprise Single Sign-On

Oracle Identity Management for SAP in Heterogeneous IT Environments. An Oracle White Paper January 2007

OneLogin Integration User Guide

An Overview of the SaskTel Hosted Contact Centre Solution Design and Delivery Principles, and Core Architecture

Identity Management in Liferay Overview and Best Practices. Liferay Portal 6.0 EE

Documentation. CloudAnywhere. Page 1

Product overview. CA SiteMinder lets you manage and deploy secure web applications to: Increase new business opportunities

How to leverage SAP NetWeaver Identity Management and SAP Access Control combined solutions

Evaluation of different Open Source Identity management Systems

Transcription:

Gabriel Magariño Software Engineer gabriel.magarino@gmail.com www.javapassion.com/idm Overview Revisited

Disclaimer and Acknowledgments The contents here are created as a own personal endeavor and thus does not reflect any official stance of Sun Microsystems on any particular technology

What is IdentityManager? Sun IdentityManager makes it possible to automate the process of creating, updating, and deleting user accounts across multiple IT systems. This process is known as provisioning (that is, creating and updating user accounts) and deprovisioning (deleting user accounts). IdentityManager can also enforce audit policies on an ongoing basis.» An audit policy specifies what types of access a user may or may not have.

Identity Manager InterfaceWithOther IT Systems In IdentityManager, managed applications and other IT systems are called resources.» Identity Manager uses either adapters or connectors to interface with resources. Adapters and connectors are installed on the Identity Manager server.» IdentityManager does not require special software (called agents) to be installed on target resources. Dozens of Identity Manager adapters and connectors are available, and new ones can be created to communicate with almost any resource using standard protocols or known application programming interfaces (APIs).

Identity Manager InterfaceWithOther IT Systems Some resources cannot be communicated with directly and require the use of the Sun Identity Manager Gateway.» Examples of resources that require the Gateway includemicrosoft products, such as Exchange and Windows Active Directory,Novell products, such as edirectory (formerlynetware Directory Services), and several others.» Identity Manager communicates directly with the Gateway and the Gateway interfaces with the resource.

Identity Manager InterfaceWithOther IT Systems IdentityManager Interfaces with Some Resources Directly, While Other Resources Require the IdentityManager Gateway

Users Connected to Identity Manager IdentityManager has a user interface (UI) for administrators, and a separate interface for end users.» To use IdentityManager, administrators and end users use a web browser to log on to IdentityManager.» Administrators use the administrator interface to manage users, set up and assign resources, define rights and access levels, establish audit policies, manage compliance, and perform other business administrator and system administrator functions.» End users use the end-user interface to perform a range of selfservice tasks, such as changing passwords, setting answers to authentication questions, requesting access to IT systems, and managing delegated assignments.

Users Connected to Identity Manager Users Can Connect to Identity Manager Using the Administrator Interface and the End-User Interface

Users Connected to Identity Manager Companies can also use SPML (Service Provisioning Markup Language) to either create their own user interface, or integrate an existing front-end system with Identity Manager. Other IdentityManager interfaces include the following:» The IVR (Interactive Voice Response) telephone interface, which enables end users to perform IdentityManager functions using a telephone» The IdentityManager IDE (Integrated Development Environment), which is used by software developers to customize IdentityManager» The IdentityManager console, which is a command-line interface available to administrators

Identity Manager Service Provider Identity Manager Service Provider is a highly scalable, extranetfocused identity management feature that is capable of provisioning and maintaining millions of end user accounts that are stored on an LDAP directory server. The Service Provider feature uses a subset of the features and functionality available in Identity Manager. For example, auditing functionality is not available because it is less useful in an extranet environment.

Sun'sOther Identity Management Products In addition to Identity Manager, Sun's other identity management solutions include Sun JavaTM System Directory Server Enterprise Edition, Sun OpenSSO Enterprise, and Sun Role Manager. These products complement IdentityManager, and, in the case of Role Manager, can extend the capabilities of Identity Manager.

Sun'sOther Identity Management Products Sun Java SystemDirectory Server Enterprise Edition» Sun Java System Directory Server Enterprise Edition is a scalable, high-performance LDAP data store for identity information.» Directory Server Enterprise Edition provides core directory services, as well as other complementary data services. OpenSSO Enterprise» Sun OpenSSO Enterprise (formerly Sun Java System Access Manager and Sun Java System Federation Manager) centralizes and enforces a comprehensive security policy for internal and external applications and web services.» It provides secure and centralized access control and single sign-on (SSO) functionality.» It allows for federated identity management, which makes it possible to share applications with companies that have different directory services, security, and authentication technologies. Federated partners trust each other to authenticate their respective users and vouch for their right to access services. Sun Role Manager» Sun RoleManager (formerly Vaau RBACx) simplifies access control compliance by managing access based on a user's roles within a company and not on an individual, user-by-user basis.» By creating roles based on usage and enterprise policies, companies can gain greater visibility into access and manage it in a more efficient, secure, and compliant manner.

Gabriel Magariño Software Engineer gabriel.magarino@gmail.com www.javapassion.com/idm Overview Revisited

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information