PPTmall LiU 2008 svensk
Download
Report
Transcript PPTmall LiU 2008 svensk
Linköpings universitet
En förnyare av forskning och utbildning
Avancerad grupphantering med FIM
Johan Peterson, IT-Arkitekt
[email protected]
Agenda
• What do we want with our
Group Management Platform?
• Why did LiU choose FIM as Group Manager?
• What is FIM?
• FIM’s components
• Group Types in FIM
• Q/A
2
What do we want with our
Group Management Platform?
• Handle “all” groups within LiU
•
Authorization groups
File storage/Application control/Computer
logons/SharePoint
•
Mailing lists
•
Passage system
• Hide it from the users!
• Use Standalone and from SharePoint
•
Standalone Default GUI, direct link
•
SharePoint logon/site metadata
• REST API
3
Why did LiU choose FIM as
Group Management Platform?
• We want to use ”well known” technologies
•
Consultants
•
Support
• Benefit from FIM’s integrations in the
Microsoft platform
•
Outlook/Outlook Web App (OWA)
•
Directly manage mailing lists members
•
Approve/Reject
• We will use FIM as a part of our Integration
platform
4
•
Windows - Change/Reset password
•
Smart Card Management
Forefront Identity Manager
2010 R2
• Earlier
ILM, Identity Lifecycle Manager 2007
MIIS, Microsoft Identity Integration Server 2003
• Synchronize catalogues/databases/etc
•
Active Directory/Sun Directory Server/Lotus Notes/Oracle Database/
Microsoft SQL Server/SAP/IBM DB2/IBM Tivoli Directory Server/Novell
eDirectory version/Web Services/TXT Files
• User Provisioning / Deprovisioning
• Certificate Management + Smart Cards
• Workflows
• Group Management
5
FIM Components
• FIM Synchronization Service
• FIM Service
• FIM Portal
• FIM Certificate Management
• FIM Reporting
• FIM Service and Portal Language Packs
• FIM Password Registration Portal
• FIM Password Reset Portal
6
FIM Sync
System Connector Space Metaverse
7
FIM Service/Portal
8
Group types in FIM
• Security Groups
• Distribution Groups
• Sets
• Add new schema objects
• Extend with new schema attributes
9
What is a Set?
• Explicit FIM object
• Any FIM object as a member
• Criteria based + Manual
• Can be used for authorization in FIM
• Trigger Workflow on
•
Transition IN
•
Transition OUT
• Workflow Message to integration platform
10
Creating a Set
11
Workflow [1/2]
• Target Owner/Manager
12
Workflow [2/2]
• Approval
13
Bind together a
Set with a Workflow
14
Creating a MPR
15
Group Management Platform
Group management
Application
WebFront (GUI)
API
Group Management WebServices
IN
OUT
IN OUT
Group Management API
Proxy API
FIM Native WebServices
Read
BizTalk
Services
FIM
Metaverse
Foundation
Integration Platform
16
LiU-DB
Links
• TechNet Virtual Labs
http://technet.microsoft.com/en-us/virtuallabs?id=UNqgTk6q59A
• Understanding Data Synchronization with
External Systems
http://technet.microsoft.com/en-us/library/ff608273(v=ws.10).aspx
• FIM 2010 Resource Management Client
http://fim2010client.codeplex.com/
17
www.liu.se