Integrating Applications with the Directory - PowerPoint PPT Presentation

1 / 9
About This Presentation
Title:

Integrating Applications with the Directory

Description:

Actuate, Brio. Colts, Kronos, PEDL, SES, EE. CU Connect. PeopleSoft 8, Actuate and Brio allow mapping of roles to directory groups. Getting Started ... – PowerPoint PPT presentation

Number of Views:33
Avg rating:3.0/5.0
Slides: 10
Provided by: andreab
Learn more at: http://www.nmi-edit.org
Category:

less

Transcript and Presenter's Notes

Title: Integrating Applications with the Directory


1
Integrating Applications with the Directory
  • Andrea Beesing
  • CIT/Integration and Delivery
  • June 25, 2002

2
Authentication/Authorization/Access
  • Authentication
  • What Verifying the identity of the user
  • How Kerberos
  • Authorization
  • What Verifying user has authority to run
    application or business process
  • How Permit Server/Application (current) ?
    Directory (future)
  • Access (to Data)
  • What Determining data user can manipulate/view
    with the application or business process
  • How Application-specific

3
Directory for Authorization How
  • Directory has a Group object which holds a
    membership list
  • Need to map each role to one or more groups
  • Application simply queries directory (via LDAP)
    as to groups user is a member of to learn what
    roles a user has

4
Directory for Authorization Benefits
  • Streamlines the maintenance of application
    security across campus
  • Associating a person with a role or group is done
    once, not within each application
  • Simplifies task of removing access when an
    individual changes status

5
Best Practices to Start With
  • Keep it simple
  • Use directory to define membership
  • Data access rules defined within application
  • Begin with definition of global groups/roles
    (student, staff, faculty, payrep)
  • Avoid proprietary schemas

6
Issues
  • Directory must be more fully populated
  • How is membership in groups/roles maintained
  • Driven from central system
  • Determined by local unit
  • To what extent can it be automated?
  • Can a generic distributed application be designed
    for memberships that require manual maintenance?

7
Big Issue The NetID Question
  • What about people who dont qualify for NetIDs?
  • What is legitimizing ID for inclusion in the
    directory?
  • NetID
  • PeopleSoft EmplID
  • Guest or temporary (dirty) ID

8
Driver is HR/Payroll/Alumni Affairs suite of
Applications
  • This suite includes
  • PeopleSoft HR/Payroll/Contributor Relations
  • Actuate, Brio
  • Colts, Kronos, PEDL, SES, EE
  • CU Connect
  • PeopleSoft 8, Actuate and Brio allow mapping of
    roles to directory groups

9
Getting Started
  • Admin units must agree on definitions of global
    groups and roles
  • Admin units must agree on how membership in
    groups and roles is maintained
  • Technical team must work with developers and
    security administrators to help them understand
    how each application interfaces with the
    directory
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2024 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "Integrating Applications with the Directory" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!