I went to a seminar a couple years ago when Novell first bought Suse. They were talking about a Zero Day Start and Zero Day Stop program under Novell. I was wondering if that type of thing ever got moved over to Suse. I assume it's like LDAP and you log in once and it authenticates against one database. Would that be the same thing? -- Michael S. Dunsavage -- Check the headers for your unsubscription address For additional commands send e-mail to suse-linux-e-help@suse.com Also check the archives at http://lists.suse.com Please read the FAQs: suse-linux-e-faq@suse.com
On 7/19/06, Michael S. Dunsavage
I went to a seminar a couple years ago when Novell first bought Suse. They were talking about a Zero Day Start and Zero Day Stop program under Novell. I was wondering if that type of thing ever got moved over to Suse.
I assume it's like LDAP and you log in once and it authenticates against one database. Would that be the same thing?
my guess is: that you were hearing about Identity Manager .... IDM3 is a truly fine directory management product that uses an XML parsing engine and directory/database driver shims to provide a foundational ability to sync directories and databases. It also has a more and more complete development environment (called designer, written in eclipse) and it includes the ability to create work-flow provisioning routines. The zero day start/stop thing is a way of saying ... a user is hired, created 1x in whatever native tool/directory/database you choose, and then ... automagically is provisioned in all of the other directories/databases and throug role-based and workflow approvals, is granted access to all of the tools he/she needs to get to work. Cool stuff. The engine runs on SLES or Netware or Windows. There are lots of connectors, including NIS and LDAP of course, and AD and Edir, people soft any flavor of SQL and flat file and AS400 and on and on. Peter -- Check the headers for your unsubscription address For additional commands send e-mail to suse-linux-e-help@suse.com Also check the archives at http://lists.suse.com Please read the FAQs: suse-linux-e-faq@suse.com
-----Original Message----- From: Peter Van Lone [mailto:petervl@gmail.com] Sent: Wednesday, July 19, 2006 2:33 PM To: suse-linux-e@suse.com Subject: Re: [SLE] Zero day start
I went to a seminar a couple years ago when Novell first bought Suse. They were talking about a Zero Day Start and Zero Day Stop
On 7/19/06, Michael S. Dunsavage
wrote: program under Novell. I was wondering if that type of thing ever got moved over to Suse.
I assume it's like LDAP and you log in once and it authenticates against one database. Would that be the same thing?
my guess is:
that you were hearing about Identity Manager ....
IDM3 is a truly fine directory management product that uses an XML parsing engine and directory/database driver shims to provide a foundational ability to sync directories and databases. It also has a more and more complete development environment (called designer, written in eclipse) and it includes the ability to create work-flow provisioning routines.
The zero day start/stop thing is a way of saying ... a user is hired, created 1x in whatever native tool/directory/database you choose, and then ... automagically is provisioned in all of the other directories/databases and throug role-based and workflow approvals, is granted access to all of the tools he/she needs to get to work.
Cool stuff.
The engine runs on SLES or Netware or Windows. There are lots of connectors, including NIS and LDAP of course, and AD and Edir, people soft any flavor of SQL and flat file and AS400 and on and on.
Peter
-- Check the headers for your unsubscription address For additional commands send e-mail to suse-linux-e-help@suse.com Also check the archives at http://lists.suse.com Please read the FAQs: suse-linux-e-faq@suse.com
Looks really neat, but the novell site doesn't have as much information as I would like on it. Ever play with this or have any sites that have more depth information? I checked out Google but didn't really find anything... -- Check the headers for your unsubscription address For additional commands send e-mail to suse-linux-e-help@suse.com Also check the archives at http://lists.suse.com Please read the FAQs: suse-linux-e-faq@suse.com
On Thu 20 Jul 2006 07:36, Michael S. Dunsavage wrote:
-----Original Message----- From: Peter Van Lone [mailto:petervl@gmail.com] Sent: Wednesday, July 19, 2006 2:33 PM To: suse-linux-e@suse.com Subject: Re: [SLE] Zero day start
On 7/19/06, Michael S. Dunsavage
wrote: I went to a seminar a couple years ago when Novell first
bought Suse.
They were talking about a Zero Day Start and Zero Day Stop
program under Novell.
I was wondering if that type of thing ever got moved over to Suse.
I assume it's like LDAP and you log in once and it authenticates against one database. Would that be the same thing?
my guess is:
that you were hearing about Identity Manager ....
IDM3 is a truly fine directory management product that uses an XML parsing engine and directory/database driver shims to provide a foundational ability to sync directories and databases. It also has a more and more complete development environment (called designer, written in eclipse) and it includes the ability to create work-flow provisioning routines.
The zero day start/stop thing is a way of saying ... a user is hired, created 1x in whatever native tool/directory/database you choose, and then ... automagically is provisioned in all of the other directories/databases and throug role-based and workflow approvals, is granted access to all of the tools he/she needs to get to work.
Cool stuff.
The engine runs on SLES or Netware or Windows. There are lots of connectors, including NIS and LDAP of course, and AD and Edir, people soft any flavor of SQL and flat file and AS400 and on and on.
Looks really neat, but the novell site doesn't have as much information as I would like on it. Ever play with this or have any sites that have more depth information? I checked out Google but didn't really find anything...
The first thing to know about IDM is that it is BIG. After doing a 4 day technical course on it, with several thousand slides and close to 2 days of labs (and 10 years of previous IT experience) I left thinking, wow.. I really would like to learn more about this product.. I should do a course or something.. The good news is that the basic license for IDM with 2 or 3 connectors now comes for free with Novell Open Enterprise Server (Not to be confused with SUSE Linux Enterprise Server). This means that if you are a Novell partner you should have it already on your partner CDs, and if not, you can buy a 5 seat license for OES and play with IDM also. Documentation for it is at http://www.novell.com/products/identitymanager/ Once again, beware. It is a complex product (as it solves a complex problem!), and typical IDM deployment projects run from 3-12 months in length and involve 5-10 engineers (Oracle, SAP, ActiveDirectory, eDirectory, Domino, Exchange, Aveya etc) So, if I haven't scared you away yet, the good news is that the product rocks, and is the industry leader in its field. Its flexible, powerfull, and mature (Its at version 3 when most of the other vendors are at version 1 or 2) Have fun :-) -- Peter Nixon http://www.peternixon.net/ PGP Key: http://www.peternixon.net/public.asc
On Thursday 20 July 2006 23:20, Peter Nixon wrote:
Once again, beware. It is a complex product (as it solves a complex problem!), and typical IDM deployment projects run from 3-12 months in length and involve 5-10 engineers (Oracle, SAP, ActiveDirectory, eDirectory, Domino, Exchange, Aveya etc)
One of the recent Novell Connections magazine issues carried articles on about three or four different authentication products from Novell/Suse. After wading thru the leaden text of these articles I came away convinced that the writer had no clue what the products did, and Novell had no idea of what direction they wanted to take with this morass. I can't imagine entrusting a mission critical network to authentication systems that are so complex that they are just as likely to prevent the system users from getting in as keeping the bad guys out. When Novell proves to me they can get the whole Ldap-postfix-amavis-spamassassin-antivir-cyrus-saslauthd chain working properly after a fresh install of SLES then I might be interested. Fragile is the word that comes to mind. -- _____________________________________ John Andersen
participants (4)
-
John Andersen
-
Michael S. Dunsavage
-
Peter Nixon
-
Peter Van Lone