Upload File

nsure idntity manager & oracle internet directory michel bluteau field corporate strategist...

  • Home
  • Documents
  • Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec
34
Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

Upload: mariah-cathleen-quinn

Post on 29-Jan-2016

219 views

Category:

Documents


0 download

Report

Tags:

TRANSCRIPT

Page 1: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

Nsure Idntity Manager &Oracle Internet Directory

Michel BluteauField Corporate StrategistNsure Identity ManagementNovell Québec

Page 2: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary2

Driver for Oracle 10g OID

• Required privileges for driver• Mandatory Classes for

– OID– Enterprise User– Enterprise Role

• Required ACLs for the changelog

Page 3: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary3

Oracle Internet Directory

•OID is an application that runs off Oracle•OID clients use LDAP•OID uses Oracle Net to communicate with Database servers

Page 4: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary4

Oracle Internet DirectoryOracle Directory Manager

Page 5: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary5

Oracle Internet DirectoryOracle Directory Manager

Page 6: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary6

Oracle Internet DirectoryCommunication

Page 7: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary7

Oracle Advanced Security Uses OID for

-Storing the password for a centralized user that can have access to more than one Database server-Centrally store and assign privileges-Integration of VPD(Virtual Private Database) and Row Label Security-With 10g, synchro of attributes userPassword(SSO) and orclPassword(DB)-OID can leverage RAS and RAC for high availability in a Oracle bubble(many DB servers)

Page 8: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary8

Driver for Oracle OID

• bi-directional sync for data• uni-directional sync for the password

– From eDirectory to OID

• No customization required(versus JDBC)

Page 9: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary9

Driver User: Select cn=orcladmin

Page 10: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary10

Choose Create Like, create meta

Page 11: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary11

Modify cn, sn, uid and userPassword

Page 12: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary12

Result: cn=meta

Page 13: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary13

Under cn=OracleContext, cn=Groups

Page 14: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary14

Add to cn=OracleSuperAdminGroup

Page 15: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary15

Add to cn=OracleUserSecurityAdmin

Page 16: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary16

Add to cn=Common User Attributes

Page 17: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary17

Add to cn=OracleContextAdmins

Page 18: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary18

Add to required DAS groups

Page 19: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary19

After adding meta to groups

- meta can create users and groups via oidadmin

- but cannot do so via LDAP with ldapadd or the DirXML driver

See:http://download-east.oracle.com/docs/cd/B10464_02/manage.904/b12118/priv_de3.htm

Page 20: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary20

After adding meta to groups

- Provide meta with the required ACLs for cn=Users and cn=Groups (under dc=novl,dc=ca).

See: http://download-east.oracle.com/docs/cd/B10464_02/manage.904/b12118/access2.htm#1059039

Page 21: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary21

After adding meta to groups

Page 22: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary22

After adding meta to groups

Page 23: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary23

Required privileges for changelog

The ACLs for changelog MUST be modified in order to allow meta access to the changelog

Page 24: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary24

Under Access Control Management

Page 25: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary25

Add meta, via Create Like

Page 26: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary26

Add meta, via Create Like

Page 27: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary27

Add meta, via Create Like

Page 28: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary28

Add meta, via Create Like

Page 29: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary29

Add meta, résultat

Page 30: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary30

Classes required for OID

- User requires the following classes:• inetOrgPerson• orclUserV2• orclUser(optional)

- Group(dynamicGroup) requires the following classes:

• groupOfUniqueNames• orclGroup• the displayname attribute is mandatory

Page 31: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary31

Page 32: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary32

Classes required for OID

Page 33: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary33

Classes required for OID

Page 34: Nsure Idntity Manager & Oracle Internet Directory Michel Bluteau Field Corporate Strategist Nsure Identity Management Novell Québec

© 12 mai 2004 Novell Inc, Confidential & Proprietary34

Classes required for OID


Creating a Full Privileged User Solution with Novell Privileged User Manager, Novell Identity Manager and Novell Sentinel

BLUTEAU, Raphael. Verbete Historia

Novell iManager

Novell windermere

Novell Nsure Identity Manager Driver for JDBC · The Nsure TM Identity Manager Driver for Java* Databa se Connectivity (JDBC) provides a generic solution for synchronizing data between

Overview of Novell® Nsure ™ Identity Manager Deployment Studio Steven Weitzeil Director of Engineering, Nsure Identity Manager & Nsure Audit Novell Bill

Novell VPN Client for · PDF fileUnderstanding Novell VPN Client for Linux 11 Novell Confidential

Novell Whitepaper

Novell NsureTM Identity Manager Driver for MVS* …Nsure Identity Manager Driver 1.0 for MVS RACF Implementation Guide May 6, 2004 May 6, 2004 Novell Confidential Manual July 16, 2002

464-000064-005 Novell, Inc. Novell AppNotes

Novell Nsure Identity Manager Fan-Out Driver

Developing for Novell ® Nsure ™ SecureLogin Gordon Mathis Senior Software Engineer, Novell Inc. [email protected]

Configuring Novell ® Nsure ™ Identity Manager 2 (formerly DirXML ® ) for Enterprise Applications Mark Worwetz Senior Software Engineer Novell, Inc. [email protected]

BLUTEAU - As Prosas Portuguesas

Novell Nsure TM Identity Manager 2 andGroupWise Provisioning Art Purcell, GroupWise ® Engineering, [email protected] David Holbrook, DirXML Engineering,

Novell SAML Extension for Novell iChain

industri NOVELL

Nsure ™ Identity Manager 2 (formerly DirXML ® ) Driver Development Overview Richard Matheson DirXML Driver Engineering Manager Novell, Inc. [email protected]

Www.novell.com Troubleshooting Novell BorderManager ® Craig Johnson Novell SysOp [email protected] Caterina Luppi Novell

REDES NOVELL

novell 4.1

Novell Filr 1.0.1 Readme · 2014. 4. 18. · Novell Filr 1.0.1 Readme 1 Novell ® Novell Filr 1.0.1 Readme April 2014 1 Product Overview Novell Filr allows you to easily access all

BLUTEAU, Raphael. Vocabulario Portuguez e Latino, 1719. Parte 2 Página 355

GWAVACon 2013: Novell File Management Suite Enhancing Novell Filr

LE SPECTACLE - Ensemble Fa7 · Fuente y Torrente, Pierre Bluteau Vino el viento, Jean-Pierre Bluteau Soledad Nueva II, Pierre Bluteau Joropo de Joaquim, Pierre Bluteau Como un Preludio,

Novell Nsure Identity Manager · Novell Novell Confidential Manual (ENU) 22 July 2004

Novell Teaming 2...Novell Teaming 2.0 1 novdocx (en) 22 June 2009 Novell ® Novell Teaming 2.0 July 31, 2009 1 Product Overview Novell® Teaming 2.0 offers many enhancements over Teaming

Nsure SecureLogin 3.51 Administration Guide · Legal Notices Novell, Inc. makes no representations or warranties with respect to the contents or use of this documentation, and specifically

Nsure ™ Audit: Instrumenting Custom Applications Rick Meredith Jason Arrington Nsure Audit Engineering Novell, Inc

Nsure ™ Audit Essentials Rick Meredith Software Engineer Novell, Inc. Jaime Brimhall Software Engineer Novell, Inc

Radius Novell

Novell Storage Manager - media.zones.commedia.zones.com/images/pdf/product-flyer-novell-storage-manager.pdf · File and Networking Services Products: Novell Storage Manager “Novell

Novell Filr - media.zones.commedia.zones.com/images/pdf/product-flyer-novell-filr.pdf · File and Networking Services Product Flyer Novell Filr 2 Best of all, because Novell Filr

Managing Novell ® Nsure™ Identity Manager 2 (formerly DirXML) Policies Shon Vella Software Engineer, Consultant Novell, Inc. Perin Blanchard Software Engineer,

Drac Novell