SAP/Microsoft

AgendaActive Directory Active Directory Active Directory Microsoft Metadirectory Service (MMS) Backup (Active Directory)4.0 2000 2000 .NET

Active Directory

= = 104

03-1234-5678 03-4321-8765

Active Directory Windows Windows Windows QoSInternetFirewall VPN NOSE-Mail ActiveDirectory

/

Active Directory

Windows 2000 Kerberos 5 Windows 2000 MIT()Active Directory X.509Secure Sockets Layer (SSL)/ Transport Layer Security (TLS)/IP SecurityIntranet Kerberos Windows NT LAN Manager (NTLM) Windows NT 4.0(Windows9x, NT4.0)

Kerberos : 1/3 (KDC)TGTActive Directory

1. (Active Directory)ST: Session Ticket3.TGTSTSTKerberos : 2/34. Kerberos Windows Windows IIS Web Exchange ServerSQL ServerSharePoint

Kerberos 2 : 3/3ST: Session TicketST1. (Active Directory)Windows Windows IIS Web Exchange ServerSQL ServerSharePoint Kerberos

Kerberos NTLM

Win2k & SAP WAS Windows 2000 Kerberos SAP WebAS Service Marketplace gsskrb5.dll (RZ10)SAP SAPSSO.msi SAP logon Win2000 SAP SU01

Kerberos ST (Active Directory)WindowsWindowsIIS WebExchange ServerSQL ServerSharePoint SAP Web-ASSAP Enterprise PortalR/3 EnterpriseKerberos

X.509SSLWeb InternetWeb Verisign, SAP Trust center )HTTP with SSL/TLS1. 1. Active Directory2. Web 3. Windows2000 Certificate Server

X.509 : SSL : S/MIME : EFS : EAP :

PIN PIN No. WindowsWeb (SSL) (S/MIME)

Active Directory AD: Active Directory1.2TGTADReaderSCDC/KDC

HTTPS InternetWeb Verisign, SAP Trust center)HTTP with SSL/TLS1. 1. Active Directory2. Web 3. Windows2000 Certificate Server Reader

Active Directory

PC1User: APC2User: APC

Active Directory ,OS (Windows Installer)

OS OS PC OS OS + PC NIC ROM

&&OS/4.

/ PC

Directory-Enable Network

1; HTTP FTP2; Telnet POP SMTP3; LDAP Http FTP1; HTTP FTP2; Telnet POP SMTP3; LDAP Http FTPActive Directory

Active DirectoryMMS (Microsoft Metadirectory Service)

() API TCO

TCO 1. 2. TCO

Directory

Active Directory & NTActive DirectoryLDAPADSIActive Directory Exchange, NDSADC MSDSS etcLDAPNDSMMS: Microsoft Metadirectory ServiceMSDSS: Microsoft Directory Synchronization Service (SFNW5(Service for NetWare)) ADC: Active Directory Connector

Active Directory LDFCSVCSVDE.EXELDIFDE.EXENT, AD, NDS, LDAP& Exchange 5.5Active Directory ConnectorGroup WiseNDS or NetWare 3.x BinderiesUNIX NIS / Services for Netware ver.5.0 / Services for Unix Ver.2.0Active DirectoryLDIF: LDAPIETFRFCLDAP COM / / / / LDAPLDAP

Active DirectoryLDAP 23LDAP ADSI (Active Directory Service Interface)Visual Studio (VB,VC++,VBScriptOffice LDAP C APIRFC1823LDAPCAPI

Active DirectoryUNIXServices for UNIX 2.0Windows UNIXActive DirectoryUNIXNISNFS / / NFSWindows NISUNIX NISActive DirectoryNISActive DirectoryActive DirectoryNISUNIX 60

Active DirectoryNetWareServices for NetWare 5.0NetWare NetWareWindows 2000 ServerNetWare

Microsoft Metadirectory Service (MMS)SQL 2000(Store)MMSADOracleSAPClient(Winform)IISDCOMSOAP HTTPADManagement AgentSAPManagement AgentDatabaseManagement Agent

MMSMetadirectory(Metaverse)ichirosFull NameTitleEmployee IDE-mail Email AddressTitleTelephoneCommon NameLDAP Office LocationTelephoneEmail addressFull NameTitleEmployee IDEmail AddressTitleTelephoneCommon NameOffice LocationEmail AddressTelephoneFull NameTitleEmployee IDEmail AddressTelelphoneCommon NameISuzuki

MMS 2.21999 7 ZOOMIT US Microsoft Consulting Service (MCS) ICL, Katten Muchin Zavis, Pirelli

MMS 2.2 (MA)

MMS 3.0SQL Server 2000 ()SQL (Unicode) (MA)Active Directory, XML/File, iPlanet/LDAP ()Exchange 5.5, Lotus Notes, Relational Database, PeopleSoft, SAP

MMS MMS 3.0Beta Release Done (10)Final ReleaseQ1 2003 ()MMS 3.1 (Fairbanks) (MA) (Polyarchy Viewer), Final ReleaseQ2-Q3 2003 ()

Active Directory VPN, IPSec, , , Active Directory4.0 2000 .NETActive DirectoryLDAP, ADSI, MMS etc..

Windows WebWindows 2000 Serverhttp://www.microsoft.com/japan/windows2000/ http://www.microsoft.com/japan/windows2000/techinfo/planning/walkthroughs/default.asp ()Windows .NET Server 2003http://www.microsoft.com/japan/windows.netserver/default.mspx

Windows IChttp://www.microsoft.com/japan/presspass/releases/030501topp.htmWindows for Smart Cards http://www.microsoft.com/JAPAN/presspass/RELEASES/091800smar.htm

Services for UNIX 2.0http://www.microsoft.com/japan/windows2000/sfu/sfuincluded.aspServices for Netware 5.0http://www.microsoft.com/japan/windows2000/sfn/default.asp LDAPhttp://www.microsoft.com/windows2000/techinfo/howitworks/activedirectory/ldap.aspMMS 2.2http://www.microsoft.com/windows2000/technologies/directory/MMS/default.asphttp://www.microsoft.com/japan/windows2000/techinfo/howitworks/activedirectory/mmsintro.asp

Windows Insiderhttp://www.atmarkit.co.jp/fwin2k/ Active Directory http://www.atmarkit.co.jp/fwin2k/operation/adprimer001/adprimer001_01.htmlNTActive Directoryhttp://www.atmarkit.co.jp/fnetwork/rensai/ad01/ad01.htmlActive DirectoryWindowshttp://www.atmarkit.co.jp/fwin2k/insiderseye/20020827dotnet_ad/dotnet_ad_01.html

Active Directory http://www.microsoft.com/japan/technet/treeview/default.asp?url=/japan/technet/prodtechnol/windows2000serv/case/tohoku.asp

SAP / Microsoft Alliance Webhttp://www.ms-sap.com (JPN)http://www.microsoft-sap.com (World Wide)

Its more than software - its a strategic solution !

Backup slide

Active Directory4.020002000 .NET

Windows NT 4.0 PDC DC

Windows 2000 Active Directory Active Directory

Active Directory PDCBDC DCDCDCDC

Windows NT 4.0 5000 (!)SYS-WINNT

Apps-WGA

MS-Forest13 (MUDS) (420)NorthernEurope

Africa

CentralEurope

FarEast

MiddleEast

MSLICorp

MSNBCI

Redmond

NorthAmerica

SouthAmerica

SouthernEurope

SouthPacific

VMUD-Vendor

Windows 2000 Active Directory NAmericaEuropeFEastMEastSPacificVendorsPartnersCAMXU.K.DEFRJPAU

AR*BR*CL*CO*EC*PE*VE*CN*HK*IN*KR*TW*AE*IL* SA* TR*

MA* ZA* EG* KE* CI*MY*NZ* PH* SG* TH* ID* VN*NamericaOUsAZ* Calif*CN* CO*DC* FL*GA* HI*IL* IN*MA* MI*MN* MO*NJ* NY*OH* OR*PA* PR*SC* TX*Europe OUsAT* BE*CH* CZ*DK* ES*FI* GR*HR* HU* IE* IT* NL* NO* PL* PT* RO* RU* SE* SK* SI*Windows NT 4.0 trust w/partners domainKAOMSNBCIWindows NT 4.0 trust w/vendorsdomainRedmondcorp.microsoft.comAfricaSAmericaRedmond 27,331 users, 5,046 groups10 Windows 2000 DCsXeon 4, 1GB RAM, 36GB HDAD Database 310 MB, GC 333MB19,000 CPU 10% 13110DIT19GB

AD (433 14) (5000 13) 2DCDNSDNSActive Directory

Active Directory WAN ()

DCGCDC

Windows Server 2003 2003

Active Directory

WindowsUNIXOSRASActive DirectoryActive DirectoryActive DirectoryWindows NTActive DirectoryActive Directory

WindowsUNIX/

Active DirectoryActive Directory///IntelliMirrorPCInteroperability

UNIXService for UNIXWindows NT 4.0

UNIX Platform OSUNIXUNIXNFSTelnet

Windows 2000 Service for UNIX v2

PC/

()Windows

Services for UNIXUNIXUNIXWindows 2000Windows 2000

Windows NTWindows 2000 Professional