Transcript IBM Tivoli Directory Integrator
IBM Tivoli Directory Integrator
Jesper Hartoft
© 2006 IBM Corporation
IBM Tivoli Directory Integrator – ITDI
Udfordringen og en mulig løsning… ITDI overblik Password synkronisering En assemblyline Mapning af data Udviklingsinterface Værktøjskassen Relaterede produkter
IBM Tivoli Directory Integrator © 2006 IBM Corporation
Udfordringen
Main frame Linux Web Service s .net
AIX
Lotus Domino
AD Directory Database File XML / CSV / TXT Novell Directory MQ IBM Tivoli Directory Integrator © 2006 IBM Corporation
En mulig løsning
Main frame Linux ITDI Web Service s .net
Lotus Domino
AD Directory AIX ITDI ?
MQ ITDI Database File XML / CSV / TXT Novell Directory ?
IBM Tivoli Directory Integrator © 2006 IBM Corporation
ITDI overblik
Oprindeligt et norsk firma - MetaMerge Burde hedde Tivoli Data Integrator ITDI er en værktøjskasse, ikke en færdiglavet løsning Overførsel af oplysninger mellem to systemer kan stort set laves med drag-and-drop Bruger JavaScript til kodning af tilpasninger Kan køres på bestemte tidspunkter eller startes af handlinger/aktiviteter
© 2006 IBM Corporation IBM Tivoli Directory Integrator
ITDI overblik
– – – – – – – – – – – – – –
Kan kommunikere med
– Active Directory – – Lotus Domino DSML / SOAP Exchange Tekst filer (CSV, XML) FTP IBM Directory Server JDBC JMS JMX JNDI LDAP MQ Netscape / iPlanet RDMBS (DB2 + Oracle) SAP R/3 SNMP – – Web Services z/OS IBM Tivoli Directory Integrator – – –
Password synkronisering fra
– Windows 2000/AD – – IBM Directory Server RACF Lotus Domino - HTTP Password SunOne Unix / Linux (Solaris, AIX, HP-UX, RedHat, Suse)
Kan også
– Fungere som LDAP proxy – – – WebServer Modtage oplysninger via Remote SSH Lave kaffe (næsten) © 2006 IBM Corporation
Password synkronisering
Password Sync plugin
AD
Userid og nyt password SSL Bruger/gruppe synkronisering
ITDI
SSL Password store (LDAP / MQ series)
Lotus Domino
HTTP Password
IBM Tivoli Directory Integrator © 2006 IBM Corporation
En assemblyline
Data flow behandlig af data, transformering og integration Domino HR HR
Input
IBM Directory Integrator Iteration Microsoft AD Iteration Web App Deltas Deltas Output IBM Directory Server • En-til-en • En-til-mange • Mange-til-en • Mange-til-mange © 2006 IBM Corporation IBM Tivoli Directory Integrator
Mapning af data
FirstName LastName EmployeeNum Status Department Title Address Zip State City cn sn objectClass givenName empNumber empType uid ou title postalAddress postalCode st l mail tlphoneNum IBM Tivoli Directory Integrator © 2006 IBM Corporation
IBM Tivoli Directory Integrator © 2006 IBM Corporation
Værktøjskassen / links
”RabbitHole” website
–
Examples, documentation www.tdi-users.org
Softerra LDAP browser www.softerra.com
– til at gennemse LDAP directories – til af afprøve søgninger
Wireshark network sniffer -
– tidligere Ethereal – til at undersøge LDAP trafik
www.wireshark.org
© 2006 IBM Corporation IBM Tivoli Directory Integrator
Relaterede produkter
IBM Tivoli Directory Server
– LDAP v3 industri standard – Bruger IBM DB2 UDB 8.1 (følger med) – Kører på Windows, AIX, Linux, Solaris, HP-UX, iSeries, pSeries, zSeries – Tæt integration med IBM operativsystemer, Websphere og Tivoli identity management og sikkerhedsprodukter – Pris: 746,- + moms © 2006 IBM Corporation IBM Tivoli Directory Integrator
Spørgsmål ?
IBM Tivoli Directory Integrator © 2006 IBM Corporation
IBM Tivoli Continous Data Protection (CDP)
IBM Tivoli Directory Integrator © 2006 IBM Corporation
What is Tivoli CDP for Files?
A new backup paradigm using a unique hybrid approach Replication Traditional Backup
• • •
To-Disk duplication Lightening fast Real-time for high importance files
•
Tolerant of transient networks
•
Multiple targets
• • • • • •
Versioning of files Point-in-time restore Central administration Archiving (vaulting) Retention Highly scalable The new direction in Data Protection is: Real-Time, To-Disk, Native Format, Simplified management.
1 10 patents filed
© 2006 IBM Corporation
Local Disk Cache
File Server or USB or Removable
IBM Tivoli Continuous Data Protection for Files
Files
Continuously protects important files without doing a thing.
without doing a thing (and other files on a Protects all other files on a schedule.
Tolerant of network “spottiness”.
Tolerant of network “spottiness”.
Up to three copies made.
Local cache for highest performance, least Local cache for highest performance, least impact, and
greatest availability
.
impact, and greatest availability.
Off-machine for protection against, well, life.
Off-machine for protection against, well, life.
Run any where anti-virus runs (file servers, laptops, workstations, etc.)
File Server / USB Disk/ FTP / HTTPs ...
Transparent, always-on, airbag-like protection. Whether ‘connected’ or not.
Whether ‘connected’ or not.
© 2006 IBM Corporation
© 2006 IBM Corporation
Configure CDP
These files will be immediately copied when they change; sent to 2 different target areas potentially.
Storing locally, users have local protection and restoration; up to a configured limit; every “save” is a unique version.
Off-machine protects against primary machine loss.
© 2006 IBM Corporation
Configure Scheduled Protection
These files will be protected on a schedule Target is off-machine (file server, external drive, external LUN, anything).
Special support for those pesky and huge EMAIL files...
© 2006 IBM Corporation
Status Screen
Live
update Summary of protection, including accurate pending counts.
Recent activity; typically, files that have been copied to a target area
© 2006 IBM Corporation
Target Admin
Visual summary of other clients and their recent activity.
Drill-down for details.
Any client not backed up within 24 hours is shown in YELLOW.
Any client that resulted in failed transfers is shown in RED.
Clicking on a client displays full XML configuration of that client (platform info, configuration database, operational statistics, etc).
Even though TCDP is a client-only architecture, typical backup administration features are possible. The file server is a repository of activity logs and information exchange managed cooperatively by the clients (“federated”); including distribution of new versions and configs.
Every “backup” results in XML log files of the activity that can be examined. All logs are retained (managed by pool size) and can be viewed or analyzed by other XML tools.
© 2006 IBM Corporation
Restore Screen
Specify which area to restore from (local or remote) If desired, specify a point-in-time to restore-to.
Typical select and/or drill-down interface; Restore single files or trees.
Typical backup products have to employ a “database” to keep track of material; CDP uses the file system itself and dynamically builds the restore views. File systems are actually pretty powerful databases in and of themselves.
© 2006 IBM Corporation
Restoring versions
If a file has multiple versions available, the count is shown.
Drilling-down into such a file will show all the known versions; users can select a specific one to restore, or use point-in-time specification.
Again, this is accomplished without a database; clever on-disk file naming conventions (patents pending) allow for tracking material easily.
All files are stored “natively”, as files; users can use their own tools to find or index or search or restore, if desired.
© 2006 IBM Corporation
Remote Settings
Version & Space control for remote targets.
Encryption Compression Sub-file copy for files over a size threshold.
© 2006 IBM Corporation
Advanced Settings
Management/report area separation Email / Database file specification Skipping extra large files Throttling Publishing (and locking) the configuration
Pris
IBM Continuous Data Protection for files Client License + SW Maintenance 12 Months (D55H7LL)
Listepris: 261,- + moms
© 2006 IBM Corporation IBM Tivoli Directory Integrator