Password Manager Using Luminis APIs

Similar documents
Luminis to Banner Single Sign-On

Going Through Withdrawals at WSU Presented by: Bhavani Koneru and Scott Owczarek Wayne State University March 20, 2007 Course ID: 282

Active Directory Account Provisioning (ADAP)

Georgia Tech s Luminis IV Beta Testing

Crystal Report tips and Techniques

Web Services Integration Case Study - Housing

Load Testing your Banner Systems

Banner Training and Help Desk Plan

Implement and Deploy Banner 7 Channels

HIGHER EDUCATION. What can we help you achieve? SunGard Banner Financial Aid

High-Availability and Scalability

PowerCAMPUS Portal and Active Directory

Banner Client--PayPal Merchant

Scoring Big with Automated Payroll Deductions

The Luminis Portal and Dashboard Reports

Faculty & Advisor Banner Self-Service Guide V2.0

Banner Security: A Functional View

PeopleAdmin and Banner HR Interface

Banner DBA Survival Guide

Managing Your Workflow System

NU SSO Account Activation Job Aid NU Employees

Using YSU Password Self-Service

BANNER WEB TAILOR RELEASE GUIDE. Release 8.5 November 2011

Identity Management in Liferay Overview and Best Practices. Liferay Portal 6.0 EE

Monash Health Self Service

The Initial Registration Process. During the initial registration process, this guide assumes the user has been provided a login ID.

Logging into LTC Instant Access the First Time

Integrating ConnectWise Service Desk Ticketing with the Cisco OnPlus Portal

Help Desk User Manual (Version 1.0)

Reconciling Loans: Financial Aid through Finance

Cummins Online Login User Instructions

Using weblock s Servlet Filters for Application-Level Security

New Help Desk Ticketing System

Novell to Microsoft Conversion: Identity Management Design & Plan

Bucks PSN. Updata Self-Service Portal User Guide. Version 1.0

User Guide. Delta Controls Single Sign On

Luminis Platform Banner Document Management Suite Portal Guide. Release November 2011

FAQ: UFS Password Self Service System

HP Asset Manager. Implementing Single Sign On for Asset Manager Web 5.x. Legal Notices Introduction Using AM

Users Guide to Internet Banking Self Service Enrollment

open windows Open Windows Logging Open Windows Product Support Issues Open Windows Australia Pty Ltd ABN

Nessus Cloud User Registration

Instructions for the Integrated Travel Manager (ITM) Self Service Password Reset (May 2011)

Help Desk Self Service Quick Start Guide

MBAM Self-Help Portals

Bahamas Tax Information Exchange Portal Documentation

Banner Self Service for students

A detailed walk through a CAS authentication

Introduction to UCONNECT Student Edition. 4/14/11 v.1.3

Banner Human Resources

SUNGARD SUMMIT 2007 sungardsummit.com 1

Pierce County IT Department GIS Division Xuejin Ruan Dan King

Broker Portal Tutorial Broker Portal Basics

Faculty & Staff User Information

Mary Immaculate. ICT Services. ICT Helpdesk. User Guide

NCUSD 203 Campus Portal Login FAQ

Application Installation/Setup

All Colleagues Landing Page

Center for Educational Performance and Information (CEPI) Single Sign-On (SSO) User Guide

CSSEA Helpdesk User Guide

For additional assistance, contact the CEDI Help Desk at or via at

How to Access the Economics Undergraduate Lab

A Non-Credit Transcript Solution

PowerSchool. Parent Single Sign-On (SSO)

SJC Password Self-Service System FAQ 2012

Faculty and Staff Guide to Port of Armstrong

ArpViewer Manual Version Datum

Multiple Application Platform Server. MAPS 4.4 Release Guide. Document version 4.4

Defense Civilian Personnel Data System (DCPDS) Army Only DCPDS Portal User Guide

Access and Login. Single Sign On Reference. Signoff

Reference Document. SedonaOnline Support

CA Service Desk Manager - Mobile Enabler 2.0

HPSM Integration Guide

Single Sign On: Volunteer User Guide

Entering a Case Into the PeopleSoft Helpdesk (CRM) Logging in

A Step-By-Step Guide

Authentication Methods

Release Notes Date: September 2013

External Account Creation and Upload Instructions for the Local Government (LG) Audit Report Collection System

FAQs for Password Self Service

CA Nimsoft Service Desk

Reset Virtual Gateway Password Job Aid

PrimeSecure Self-Service User Guide Revision 1.2

Banner Accounts Receivable PLUS Loan Refunding

The Benefits of an Industry Standard Platform for Enterprise Sign-On

Mississippi Educator Licensure Management System. Single Sign On User Guide

econtrol 3.5 for Active Directory & Exchange Self-Service Guide

Provider Web Portal Quick User Guide Version 5.0

How To Integrate A Cell Phone With A Pbx On A Network With A Cellphone From A Cell Tower On A Cell Network On A College Campus

P-Synch by M-Tech Information Technology, Inc. ID-Synch by M-Tech Information Technology, Inc.

Active Directory Quick Reference Guide for PowerCAMPUS Self-Service 7.x. Release 5 July 2011

Banner Document Management Release Guide. Release 8.5 January 2013

Transcription:

SUNGARD SUMMIT 2007 sungardsummit.com 1 Password Manager Using Luminis APIs Presented by: Ron Romao Savannah College of Art and Design March, 2007 A Community of Learning

Password Manager Using Luminis APIs Web application using Java and JSP Uses Luminis Data Access API Uses CAS to protect parts of the application 2

SUNGARD SUMMIT 2007 sungardsummit.com 3 I Will Discuss What we did - Custom Password Change Application Why we did it - Reduce Help Desk Calls - Log Password Changes How we did it - Technologies Used - Process Explained - Challenges Encountered A Community of Learning

Password Manager Web Application Allows users to reset their passwords Using their Banner security question Allows Helpdesk staff to reset user passwords Extra logging capabilities Allow us to track more data 4

How : Process Explained : Forgot and Change Password Page 5

How : Process Explained : Help Desk Page 6

What : Custom Password Change Application Stand alone Web Application Written in Java and JSP Running on Tomcat Updates custom database tables Logs Password Changes CAS Protected 7

SUNGARD SUMMIT 2007 sungardsummit.com 8 Why we did it - Needs for this project - Benefits A Community of Learning

Why : Main Reasons Decrease Help Desk calls Users can reset their password Log password changes Auditing Purposes Who changed the password (HD or self change) When password was changed 9

Why : Benefits Increase productivity for end users By avoiding unnecessary calls to Help Desk Improves end user satisfaction User feels more in control of their password Easier password reset process Easy to use password page 10

SUNGARD SUMMIT 2007 sungardsummit.com 11 How We did it - Technologies used - Process explained - Challenges Encountered A Community of Learning

How : Technologies Used Java, JSP and Servlets Tomcat Luminis Data Access API CAS 12

How : Process Explained JSP Pages Forgot Password - Self help Change Password - Self help (link in Luminis) Help Desk Change Password Help Desk use only Logout (invalidates session) 13

How : Process Explained Forgot Password Page Reset password by answering Banner security question Future improvements Reset Luminis password by providing Novell login information 14

How : Process Explained : Help Desk Page Help Desk Page Help Desk use only User requesting password change Come to HD Show SCAD ID Call HD Staff verify user information HD save notes for the request Everything gets logged! 15

How : Process Explained CAS Protection All pages are CAS protected User need to be logged into Luminis portal valid CAS ticket Except Forgot Password page Unauthorized users sent to Luminis login page. 16

web-xml file </web-app> <!--start CAS stuff--> <filter> <filter-name>cas Filter</filter-name> <filter-class>edu.yale.its.tp.cas.client.filter.casfilter</filter-class> <init-param> <param-name>edu.yale.its.tp.cas.client.filter.loginurl</param-name> <paramvalue>https://myscad.scad.edu/cp/cas/login?service=http://myscad.scad.edu:8080/changepassword/cas /redirect.jsp</param-value> </init-param> <init-param> <param-name>edu.yale.its.tp.cas.client.filter.validateurl</param-name> <param-value>https://myscad.scad.edu/cp/cas/servicevalidate</param-value> </init-param> <init-param> <param-name>edu.yale.its.tp.cas.client.filter.servername</param-name> <param-value>myscad.scad.edu:8080</param-value> </init-param> </filter> <filter-mapping> <filter-name>cas Filter</filter-name> <url-pattern>/cas/*</url-pattern> </filter-mapping> <!--end CAS stuff--> </web-app> 17

How : Process Explained : Luminis API Java class using Luminis Data Access API Create DAManager stub Call Web Service method modify PasswordModification class changes Luminis password ExternalSystemAccountModification class changes the password in Banner 18

How : Process Explained : Creating the Service System.setProperty("java.class.path", classpath); System.setProperty( "javax.xml.rpc.servicefactory "com.sct.pipeline.webservice.client.jaxrpcservicefactory" ); Service service = null; ServiceFactory sf = ServiceFactory.newInstance(); service = sf.createservice( QName.valueOf( "{urn:pipeline.sct.com:webservice:da:200306:soap}da" )); Stub stub = (Stub)service.getPort( DAManager.class ); stub._setproperty (javax.xml.rpc.stub.endpoint_address_property, "http://" + host + "/ws/webservice/da/200306/soap/damanager" ); stub._setproperty ( "javax.xml.rpc.security.auth.username", username ); stub._setproperty ( "javax.xml.rpc.security.auth.password", password ); svc = (DAManager)stub; 19

How : Process Explained : Modifying the Password ModifyParams mp = new ModifyParams(); mp.setboid( new BOID( BusinessObjectTypeEnum.USER, userid ) ); PasswordModification pm = new PasswordModification( "PASSWORD", new PasswordPair(newPass, newpass), ModOperationTypeEnum.REPLACE ); Modification[] mods = new Modification[ 1 ]; mods[ 0 ] = pm; mp.setmodifications( mods ); svc.modify( mp ); // Modify Password ExternalSystemAccount[] esa = new ExternalSystemAccount[ 1 ]; esa[ 0 ] = new ExternalSystemAccount( "SCT", userid, pin); ExternalSystemAccountModification esamod = new ExternalSystemAccountModification( "EXTERNALSYSTEMACCOUNTS", esa, ModOperationTypeEnum.ADD ); mods[ 0 ] = esamod; mp.setmodifications( mods ); svc.modify( mp ); // Modify PIN fpass.setgobtpac(userid); // Updates gobtpac to trigger an event 20

How : Process Explained Password Rules Must be at least 8 characters long Must include at least one number and one alphabetic character Must NOT include spaces or any of the following characters: #,+"\<>;@&$~=*%!{}()/:[]'? Enforced on the server side 21

Challenges WSDL Issue Web Service WSDL not found Service could not be created Solution found Changed classpath inside application. Pointed to WSDL file location System.setProperty("java.class.path", classpath); 22

Challenges Issues with SSO to SSB Altered baseline trigger Update activity date on GOBTPAC Everybody is happy. 23

Summary Our Password Management Solution allows user to reset forgotten passwords securely, allowing us to implement stronger policies while reducing help desk calls. It also allows Help Desk to reset user passwords. 24

Summary Application built using Java, JSP and Web Services to provide an easy to use interface for users to maintain their own passwords. It uses Luminis Data Access API to change passwords in Luminis and Banner. It uses events to carry changes to external systems. Uses CAS to protect application from unauthorized users. 25

Questions? 26

Thank You! Ron Romao Web Programmer Savannah College of Art and Design rromao@scad.edu Please complete the online class evaluation form SunGard, the SunGard logo, Banner, Campus Pipeline, Luminis, PowerCAMPUS, Matrix, and Plus are trademarks or registered trademarks of SunGard Data Systems Inc. or its subsidiaries in the U.S. and other countries. Third-party names and marks referenced herein are trademarks or registered trademarks of their respective owners. 2007 SunGard. All rights reserved. 27

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information