CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment
-
Upload
cloudidsummit -
Category
Technology
-
view
272 -
download
2
description
Transcript of CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment
![Page 1: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/1.jpg)
Caterpillar Non-Confidential
Identity Virtualization
Cloud Identity Summit – July 22, 2014 Rowland Nicholson - IAM Architect
Global Information Systems
![Page 2: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/2.jpg)
Caterpillar Non-Confidential 2 Global Information Systems
N New App
Enterprise Directory
![Page 3: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/3.jpg)
Caterpillar Non-Confidential 3 Global Information Systems
U Upgrade
Enterprise Directory
![Page 4: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/4.jpg)
Caterpillar Non-Confidential 4 Global Information Systems
L Legacy
Enterprise Directory
![Page 5: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/5.jpg)
Caterpillar Non-Confidential 5 Global Information Systems
Enterprise Directory
A App
![Page 6: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/6.jpg)
Caterpillar Non-Confidential 6 Global Information Systems
1 VIRTUAL ATTRIBUTES
![Page 7: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/7.jpg)
Caterpillar Non-Confidential 7 Global Information Systems
Enterprise Directory
X ISO Doc’s
Y Turbines
DB Accounts
![Page 8: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/8.jpg)
Caterpillar Non-Confidential 8 Global Information Systems
Enterprise Directory
X ISO Doc’s
Y Turbines
DB Accounts
Radius Server
![Page 9: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/9.jpg)
Caterpillar Non-Confidential 9 Global Information Systems
Enterprise Directory
X ISO Doc’s
Y Turbines
DB Accounts
Radius Server
Virtual Directory
solarid = ‘D’+ badgenumber
![Page 10: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/10.jpg)
Caterpillar Non-Confidential 10 Global Information Systems
Enterprise Directory
F1 “Flexible”
F2 “Finicky”
Virtual Directory +4 virtual attributes
department entryUUID member memberOf
![Page 11: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/11.jpg)
Caterpillar Non-Confidential 11 Global Information Systems
1 VIRTUAL ATTRIBUTES
![Page 12: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/12.jpg)
Caterpillar Non-Confidential 12 Global Information Systems
2 DYNAMIC GROUPS
![Page 13: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/13.jpg)
Caterpillar Non-Confidential 13 Global Information Systems
F2 “Finicky” Only groups
• affiliations • organizations • business units • rules
![Page 14: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/14.jpg)
Caterpillar Non-Confidential 14 Global Information Systems
Enterprise Directory
F2 “Finicky”
Virtual Directory
ou=groups ou=groups ou=autogen ou=dynamic ou=groups
![Page 15: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/15.jpg)
Caterpillar Non-Confidential 15 Global Information Systems
AttributeValues
Autogen Group
Members with value
![Page 16: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/16.jpg)
Caterpillar Non-Confidential 16 Global Information Systems
Rule
Dynamic Group
Members match rule
![Page 17: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/17.jpg)
Caterpillar Non-Confidential 17 Global Information Systems
Enterprise Directory
F2 “Finicky”
Virtual Directory
ou=groups ou=groups ou=autogen ou=dynamic ou=groups
F1 “Flexible”
![Page 18: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/18.jpg)
Caterpillar Non-Confidential 18 Global Information Systems
2 DYNAMIC GROUPS
![Page 19: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/19.jpg)
Caterpillar Non-Confidential 19 Global Information Systems
3 ”VIRTUALIZED” DIRECTORY
![Page 20: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/20.jpg)
Caterpillar Non-Confidential 20 Global Information Systems
F2 “Finicky”
Supports only Directory “Q”
![Page 21: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/21.jpg)
Caterpillar Non-Confidential 21 Global Information Systems
F2 “Finicky”
Enterprise Directory Virtual Directory
• “Q” DIT • “Q” Schema
![Page 22: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/22.jpg)
Caterpillar Non-Confidential 22 Global Information Systems
3 ”VIRTUALIZED” DIRECTORY
![Page 23: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/23.jpg)
Caterpillar Non-Confidential 23 Global Information Systems
… one more thing
![Page 24: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/24.jpg)
Caterpillar Non-Confidential 24 Global Information Systems
Enterprise Directory Virtual Directory
PII Data View
F2 “Finicky”
F1 “Flexible”
![Page 25: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/25.jpg)
Caterpillar Non-Confidential 25 Global Information Systems
APPLICATIONS:
F2 “Finicky”
F1 “Flexible” IAM
Virtual attributes Dynamic groups
Virtual DIT/Schema Federated
New Upgrades Legacy
LDAP
WS SAML WS-Fed OAuth
OpenID Connect WAM
![Page 26: CIS14: Case Study: Using a Federated Identity Service for Faster Application Deployment](https://reader031.fdocuments.us/reader031/viewer/2022020115/555953fdd8b42a98708b47be/html5/thumbnails/26.jpg)
Caterpillar Non-Confidential 26 Global Information Systems
Thank You!