1 / 9

Sun Identity Manager Evaluation

Sun Identity Manager Evaluation. An exploration by the Advanced Systems Team, ICSD, Academic Services. Sun IDM architecture Sun IDM integration and administration Sun IDM deployment Sun IDM data flows Adding a Policy Agent Demonstration server network SSO Demonstration

lionel
Download Presentation

Sun Identity Manager Evaluation

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Sun Identity ManagerEvaluation An exploration by the Advanced Systems Team, ICSD, Academic Services

  2. Sun IDM architecture Sun IDM integration and administration Sun IDM deployment Sun IDM data flows Adding a Policy Agent Demonstration server network SSO Demonstration Policy Demonstration Q&A IDM Demo Agenda

  3. Staff and students Protected web resource Web Policy Agent Authentication User Interface Server DMZ Authentication Service Session Service Naming Service Policy Service Logging Service Access Manager Configuration LDAP Directory Server Users LDAP Access Manager Trent HR SITS Laminex PSMD Identity ServerIndex Data Identity Manager Basic systems for the Exeter Identity Management Service

  4. Exeter My.Portal Web Policy Agent Authentication User Interface Server Library Role Admins Web Policy Agent Access Manager WebCT Directory Server Web Policy Agent Identity Admins Identity Manager Midland Trent HR Web Policy Agent Trent HR, SITS, Laminex, PCMD Web service Admins Identity Management Service Integration

  5. AuthN UI LB Protected Resource LB Protected Resource 3 Protected Resource 2 Web Policy Agent Protected Resource 1 Web Policy Agent Web Policy Agent AuthN UI Server 1 AuthN UI Server 2 Access Manager LB Message Queue Broker Message Queue Broker Access Manager 1 Access Manager 2 Directory Server LB 2 Directory Server LB 1 Directory Server 1 Identity Manager 1 Directory Server 2 Identity Manager 2 Load balancing, security and failover provision

  6. AuthN UI LB Protected Resource LB Protected Resource 1 Protected Resource 2 Web Policy Agent Web Policy Agent AuthN UI Server 1 AuthN UI Server 2 Access Manager LB Message Queue Broker Message Queue Broker Access Manager 1 Access Manager 2 Directory Server LB 2 Directory Server LB 1 Directory Server 1 Identity Manager 1 Directory Server 2 Identity Manager 2 A sequential illustration of data flow for a login sequence

  7. Apache: load a new module and specify a configuration file Example: Add file to /etc/httpd/conf.d: LoadModule dsame_module /usr/local/linux_agent_apache/agents/apache/lib/libamapc2.so Agent_Config_File /etc/opt/agents/apache/config/_etc_httpd_conf/AMAgent.properties Configure the AMAgent.properties file answering ten questions in a setup script. Restart web server Adding a Policy Agent

  8. Five Solaris zones on mcrmonitor02 zresource gilead Web Policy Agent Web Policy Agent zauthn Role Admin Access Manager zaccess Directory Server zdir Identity Manager zident Advanced Systems Demonstration system

  9. SSO Log into protected resource on zresource. Logout. Log into protected resource on gilead. Logout. Log into zresource and then gilead using SSO. Policy Management Disable testuser2 access to gilead Attempt to log into gilead IDM Demonstration

More Related