PSUMAC102: Penn State Central Auth In- Depth
|
|
- Rhoda Newton
- 5 years ago
- Views:
Transcription
1 PSUMAC102: Penn State Central Auth In- Depth
2 The Penn State Auth Environment It s a bit messy One of three options: Use Access Accounts and the infrastructure surrounding that Do your own thing Combine the two
3 Penn State s Access Account Auth Environment MIT Kerberos V5 IBM Tivoli Directory LDAP V6 Custom Web Applications IBM GPFS FileSystem V3.2 Access WinAD
4 Kerberos Infrastructure is MIT Kerberos V 4 KDCs (Master and Replicas) 1 is off-site for geographic redundancy
5 Kerberos (dce.psu.edu) Realm name is dce.psu.edu Note the lowercase name
6 Kerberos (dce.psu.edu) Contain passwords for all PSU Faculty, Students and Staff (Penn State Access Accounts) web-based tool (work.psu.edu) for changing passwords web-based tool (work.psu.edu) for provisioning service (and user) keytabs
7 Penn State s Access Account Auth Environment MIT Kerberos V5 IBM Tivoli Directory LDAP V6 Custom Web Applications IBM GPFS FileSystem V3.2 Access WinAD
8 LDAP IBM Tivoli Directory Server 6.x Master, multiple replicas Multiple addresses Multiple load-balanced systems
9 LDAP ldap.psu.edu 2 back-end systems for general inquiries advertised publicly limited to 200 returns per query
10 LDAP dirapps.aset.psu.edu 2 back-end systems programmatic interface not advertised publicly (admins and programmers) limited to 1000 returns per query
11 LDAP Third interface not advertised used only for internal systems and emergency failover geographically distributed
12 LDAP Numerous attributes available for AuthZ decisions Some commonly used attributes are: EduPerson Primary Affiliation UMG or Service group membership Department Admin Area
13 LDAP LDAP Groups and Membership Course groups (protected by FERPA) Service groups psu.facstaff, psu.up.staff, psu.up.faculty umg/services. User Managed Groups
14 LDAP User Managed Groups (UMGs) LDAP group created and managed by a user Personal groups ownership limit 30 Functional groups ownership limit 50
15 Penn State s Access Account Auth Environment MIT Kerberos V5 IBM Tivoli Directory LDAP V6 Custom Web Applications IBM GPFS FileSystem V3.2 Access WinAD
16 Active Directory Penn State Windows Active Directory (WinAD) AKA ACCESS.PSU.EDU Forest
17 Active Directory Windows Server 2003 Functional Level 2003, 2008 & 2008r2 Domain Controllers Present Strong Infrastructure for University-wide demand With geographic separation of DCs
18 Active Directory Contains shadow users and groups from ldap including UMGs! For PSU Access passwords, the WinAD has a oneway trust to Kerberos
19 Active Directory ITS maintains the environment, it s yours to control Organization Unit (OU) based delegation OU admins have full control over their own OU Other AD options available
20 The Mac Perspective Macs can join the AD Manage Macs with the same tools as Windows Use your OU admin account on both Mac & PC Network PASS Home Folders - Go Off-line auth - Negative MCX - coming?
21 Penn State s Access Account Auth Environment MIT Kerberos V5 IBM Tivoli Directory LDAP V6 Custom Web Applications IBM GPFS FileSystem V3.2 Access WinAD
22 Custom Web Apps Demo!
23 Main methods of integration PSU Kerberos and PSU LDAP OD Master with PSU Kerberos Active Directory
24 PSU Kerberos + PSU LDAP Pros Quick and Easy Implementation/Deployment Local servers not necessary Simple architecture Fire and forget Cons No local control Requires network at all times No persistence
25 OD Master with PSU Kerberos Pros More local control Persistence (if desired) Closest to the Apple way (MCX, etc) Cons You re in charge of LDAP (lose central info) More work for set up
26 Active Directory Pros Quick integration for Windows admins Admin Macs with AD Admin account All systems authn through the same method Cons Still very experimental, not officially supported Lack of MCX support...for now Lack of persistence...for now
27 Bringing your site in (primer for lab) Kerberos LDAP Active Directory
28 Integrating Your Macs with dce.psu.edu Kerberos Clients Services /Library/Preferences/ edu.mit.kerberos /Library/Preferences/ edu.mit.kerberos /etc/krb5.keytab $service.config
29 Tools of the Trade kt_util scp/sftp Keytab Generator PASS serveradmin nano/vi edu.mit.kerberos /etc/authorization
30 PSU LDAP Bind to directory using Directory Utility /Applications/Utilities/Directory Utility (10.5-) /System/Library/CoreServices/Directory Utility (10.6+) Use attributes to make decisions many places you can do this! Does not work WITH an OD Master
31 OD Master LDAP Bind to directory using Directory Utility /Applications/Utilities/Directory Utility (10.5-) /System/Library/CoreServices/Directory Utility (10.6+) Use attributes to make decisions many places you can do this! Does not work WITH PSU LDAP
32 PSU Active Directory Bind to AD (ACCESS.PSU.EDU) Edit /Library/Preferences/DirectoryService/ ActiveDirectory.plist flip AD Generate AuthAuthority from True to False Enable Active Directory Authentication Edit /Library/Preferences/edu.mit.Kerberos Edit /etc/authorization REBOOT!!!
33 PSU Active Directory OR... Use the PSU AD Join Script for Macs Warning: this script is experimental. I am not responsible if Velociraptors escape from your Mac and eat you if you run it *Velociraptor comic Randall Munroe, xkcd.com
34 End of PSUMAC102 Questions?
PSUMAC101: Intro to Auth
PSUMAC101: Intro to Auth We Are... Jeremy Hill Systems Design Specialist, Applied Information Technology Ryan Coleman Systems Administrator, Applied Information Technology Overview Why, What and When of
More informationIntegrating Lion Into PSU Auth: A Case Study
Integrating Lion Into PSU Auth: A Case Study Roy Long - ral20@psu.edu Scott Gallagher - spg14@psu.edu First things first May the 4th be with you Session Info Lion Client / Server setup Making 3rd party
More informationMOC 20417C: Upgrading Your Skills to MCSA Windows Server 2012
MOC 20417C: Upgrading Your Skills to MCSA Windows Server 2012 Course Overview This course provides students with the knowledge and skills to upgrade to MCSA Windows Server 2012. Course Introduction Course
More informationFreeIPA Cross Forest Trusts
Alexander Bokovoy Andreas Schneider May 10th, 2012 1 FreeIPA What is FreeIPA? Cross Forest Trusts 2 Samba 3 Demo Talloc Tutorial Pavel Březina wrote Talloc tutorial! http://talloc.samba.org/
More informationPaperspace. Deployment Guide. Cloud VDI. 20 Jay St. Suite 312 Brooklyn, NY Technical Whitepaper
Deployment Guide Cloud VDI Copyright 2017 Paperspace, Co. All Rights Reserved September - 1-2017 Technical Whitepaper Whitepaper: Deployment Guide Paperspace Content 1. Overview... 3 2. User Management...
More informationCross-realm trusts with FreeIPA v3
Cross-realm trusts with FreeIPA v3 Alexander Bokovoy, Andreas Scheider Alexander Bokovoy about:me Member of Samba Team since 2003 Principal Software Engineer, Red Hat FreeIPA project Andreas Schneider
More informationHow to Integrate an External Authentication Server
How to Integrate an External Authentication Server Required Product Model and Version This article applies to the Barracuda Load Balancer ADC 540 and above, version 5.1 and above, and to all Barracuda
More informationSBCSC Staff BYOD (bring your own device) Instructions: 08/11/2016
SBCSC Staff BYOD (bring your own device) Instructions: 08/11/2016 Teachers and staff, use these instructions to get a personal device of yours attached to the SBCSC BYOD wireless network. Once connected,
More informationAdministration Of Active Directory Schema Version Checking
Administration Of Active Directory Schema Version Checking Interoperability between Different Versions of Configuration Manager Extending the Active Directory schema is optional for Configuration Manager.
More informationDesigning Windows Server 2008 Network and Applications Infrastructure
Designing Windows Server 2008 Network and Applications Infrastructure Course No. 6435B - 5 Days Instructor-led, Hands-on Introduction This five-day course will provide students with an understanding of
More informationIdentity with Windows Server 2016 (742)
Identity with Windows Server 2016 (742) Install and Configure Active Directory Domain Services (AD DS) Install and configure domain controllers This objective may include but is not limited to: Install
More informationIntegrating the RHCI Suite with IdM
Integrating the RHCI Suite with IdM INTRODUCTION Who are we? Chris Keller Solutions Architect Red Hat, Inc. Nathan Kinder Engineering Manager Red Hat, Inc. What is IdM? IdM Features Numerous Capabilities
More informationFilesharing. Jason Healy, Director of Networks and Systems
Filesharing Jason Healy, Director of Networks and Systems Last Updated Mar 18, 2008 2 Contents 1 Name of Project Here 5 1.1 Introduction.............................. 5 1.2 Initial Setup..............................
More informationKerberos and Active Directory symmetric cryptography in practice COSC412
Kerberos and Active Directory symmetric cryptography in practice COSC412 Learning objectives Understand the function of Kerberos Explain how symmetric cryptography supports the operation of Kerberos Summarise
More informationDeploying VMware Identity Manager in the DMZ. SEPT 2018 VMware Identity Manager 3.3
Deploying VMware Identity Manager in the DMZ SEPT 2018 VMware Identity Manager 3.3 You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/ If you have
More informationWindows Server 2003 Network Administration Goals
Objectives Differentiate between the different editions of Windows Server 2003 Explain Windows Server 2003 network models and server roles Identify concepts relating to Windows Server 2003 network management
More informationVMware Identity Manager Cloud Deployment. DEC 2017 VMware AirWatch 9.2 VMware Identity Manager
VMware Identity Manager Cloud Deployment DEC 2017 VMware AirWatch 9.2 VMware Identity Manager You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/
More informationSun Identity Management & Open Directory
Sun Identity Management & Open Directory Jennifer Walbank/Pascal Grosvenor, LDAP Guru from the server group :) & Berry Mak University of Technology, Sydney Why and how? Why? Same sign on How? Design Centralising
More informationVMware Identity Manager Cloud Deployment. Modified on 01 OCT 2017 VMware Identity Manager
VMware Identity Manager Cloud Deployment Modified on 01 OCT 2017 VMware Identity Manager You can find the most up-to-date technical documentation on the VMware Web site at: https://docs.vmware.com/ The
More informationISILON ONEFS WITH HADOOP KERBEROS AND IDENTITY MANAGEMENT APPROACHES. Technical Solution Guide
ISILON ONEFS WITH HADOOP KERBEROS AND IDENTITY MANAGEMENT APPROACHES Technical Solution Guide Hadoop and OneFS cluster configurations for secure access and file permissions management ABSTRACT This technical
More informationInstalling and Configuring VMware Identity Manager Connector (Windows) OCT 2018 VMware Identity Manager VMware Identity Manager 3.
Installing and Configuring VMware Identity Manager Connector 2018.8.1.0 (Windows) OCT 2018 VMware Identity Manager VMware Identity Manager 3.3 You can find the most up-to-date technical documentation on
More informationIT222 Microsoft Network Operating Systems II
1 ITT Technical Institute IT222 Microsoft Network Operating Systems II Unit 1: Chapters 1 & 2 2 Chapter 1 OVERVIEW OF ACTIVE DIRECTORY Chapter 1: Overview of Active Directory, pp. 1 23 Chapter 2, Implementing
More informationM20742-Identity with Windows Server 2016
M20742-Identity with Windows Server 2016 Course Number: M20742 Category: Technical Microsoft Duration: 5 days Certification: 70-742 Overview This five-day instructor-led course teaches IT Pros how to deploy
More informationUnderstanding The Ad Lds Schema Editor
Understanding The Ad Lds Schema Editor For more information about bind redirection, refer to Understanding ADAM bind Open the AD DS/LDS schema analyzer (ADSchemaAnalyzer.exe) in the file is generated from
More informationMCSA Windows Server 2012
MCSA Windows Server 2012 This Training Program prepares and enables learners to Pass Microsoft MCSA: Windows Server 2012 exams 1. MCSA: Windows Server 2012 / 70-410 Exam (Installing and Configuring Windows
More information20742: Identity with Windows Server 2016
Course Content Course Description: This five-day instructor-led course teaches IT Pros how to deploy and configure Active Directory Domain Services (AD DS) in a distributed environment, how to implement
More informationFreeIPA - Control your identity
FreeIPA - Control your identity LinuxAlt 2012 Martin Košek, Sr. Software Engineer, Red Hat Nov 3 rd, 2012 This work is licensed under the Creative Commons Attribution-NonCommercial-ShareAlike
More informationMETHODOLOGY This program will be conducted with interactive lectures, PowerPoint presentations, discussions and practical exercises.
CENTER OF KNOWLEDGE, PATH TO SUCCESS Website: IDENTITY WITH WINDOWS SERVER 2016 Course 20742: 5 days; Instructor-Led INTRODUCTION This five-day instructor-led course teaches IT Pros how to deploy and configure
More informationComputers Gone Rogue. Abusing Computer Accounts to Gain Control in an Active Directory Environment. Marina Simakov & Itai Grady
Computers Gone Rogue Abusing Computer Accounts to Gain Control in an Active Directory Environment Marina Simakov & Itai Grady Motivation Credentials are a high value target for attackers No need for 0-day
More informationConfiguring and Troubleshooting Windows Server 2008 Active Directory Domain Services
6425 - Configuring and Troubleshooting Windows Server 2008 Active Directory Domain Services Duration: 5 days Course Price: $2,975 Software Assurance Eligible Course Description Microsoft Windows Server
More informationIdentity with Windows Server 2016
Identity with Windows Server 2016 Course 20742B - 5 Days - Instructor-led, Hands on Introduction This five-day instructor-led course teaches IT Pros how to deploy and configure Active Directory Domain
More informationWe're Not CIS. The Technical Staff & Computing Facilities. What CIS Does for CS. User Community
We're Not CIS The Technical Staff & Computing Facilities CIS: Computing and Information Services Campus Computing Provides the Univ's computing infrastructure Course registration (Banner) Payroll (via
More informationPractical Steps Implementing Red Hat Identity Management Solution David Sirrine Senior Technical Account Manager, Red Hat Jerel Gilmer SEC June 29,
Practical Steps Implementing Red Hat Identity Management Solution David Sirrine Senior Technical Account Manager, Red Hat Jerel Gilmer SEC June 29, 2016 Agenda Brief introduction to the Red Hat Identity
More informationDeploying VMware Identity Manager in the DMZ. JULY 2018 VMware Identity Manager 3.2
Deploying VMware Identity Manager in the DMZ JULY 2018 VMware Identity Manager 3.2 You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/ If you have
More informationios BYOD Wireless Instructions
ios BYOD Wireless Instructions The following is an outline of the process required to connect your personally-owned ios device to the BYOD Wireless. First open the settings App Select the BYOD wireless
More informationHosting with Eduphoria
Hosting with Eduphoria Hosted Migration Process What does my district need to do? How will this migration effect my district? Eduphoria's Hosted Environment Hosted vs Self hosted features User Account
More informationIdentity with Microsoft Windows Server 2016 (MS-20742)
Identity with Microsoft Windows Server 2016 (MS-20742) Modality: Virtual Classroom Duration: 5 Days SATV Value: 5 Days SUBSCRIPTION: Master, Premium About this course Windows Server vnext, which we now
More informationDirectory Services. MacSysAdmin 2012
Directory Services arek@arekdreyer.com MacSysAdmin 2012 Directory Services in 15 Minutes Directory Services in 50 Minutes Happy 9th Anniversary See MacSysAdmin 2010 Session 2008 2009 Didn't update DS book
More informationConfiguring and Troubleshooting Windows Server 2008 Active Directory Domain Services (Course 6425A)
Duration Five days Introduction This five-day instructor-led course provides to teach Active Directory Technology Specialists with the knowledge and skills to configure in a distributed environment, implement
More informationMicrosoft Implementing an Advanced Server Infrastructure
1800 ULEARN (853 276) www.ddls.com.au Microsoft 20414 - Implementing an Advanced Server Infrastructure Length 5 days Price $4290.00 (inc GST) Version C Overview Course 20413 is a prerequisite course for
More information70-647: Windows Server Enterprise Administration Course 01 Planning for Active Directory
70-647: Windows Server Enterprise Administration Course 01 Planning for Active Directory Slide 1 Course 1 Planning for Active Directory Planning the Domains and Forest Structure Planning for Sites and
More informationExtend On-Premises Windows Server 2016 Active Directory to Azure VM Complete Lab (V1.1)
Extend On-Premises Windows Server 2016 Active Directory to Azure VM Complete Lab (V1.1) Ahmed Abdelwahed Microsoft Certified Trainer Ahmed_abdulwahed@outlook.com Contents Lab Objective... 3 Existing Active
More informationQuick Audience Survey. New to imaging on Macs? Have Mac OS X Server(s)? Basic Scripting Skills? Have Windows (SMB) Servers?
PSUMAC202: Imaging Remember us? Justin Elliott, Penn State University IT Manager, Classroom and Lab Computing Rusty Myers, Penn State University IT Support Specialist, College of Education Quick Audience
More informationINUVIKA TECHNICAL GUIDE
Version 1.6 December 13, 2018 Passing on or copying of this document, use and communication of its content not permitted without Inuvika written approval PREFACE This document describes how to integrate
More informationSystems Deployment with Blast Image Config 3.0
Systems Deployment with Blast Image Config 3.0 May 3, 2012 Justin Elliott Penn State University MacAdmins Conference 2012 Quick Audience Survey Who s new to Mac systems imaging and deployment? Who has
More informationjamf Nation - London Roadshow
jamf Nation - London Roadshow Sachin Parmar Workplace Technology Manager 17 May 2018 About Just Eat Our vision Creating the world s greatest food community 3 About Me About Me Sachin Parmar 8+ years professionally
More informationIBM Exam IBM Tivoli Identity Manager V5.1 Implementation Version: 5.0 [ Total Questions: 158 ]
s@lm@n IBM Exam 000-006 IBM Tivoli Identity Manager V5.1 Implementation Version: 5.0 [ Total Questions: 158 ] Question No : 1 Which two join directives can be used when multiple provisioning policies affect
More informationOffice 365 and Azure Active Directory Identities In-depth
Office 365 and Azure Active Directory Identities In-depth Jethro Seghers Program Director SkySync #ITDEVCONNECTIONS ITDEVCONNECTIONS.COM Agenda Introduction Identities Different forms of authentication
More informationAdd new AD to an existing AD Forest
By: Loc Huynh Date: 13 Oct 2009 Add new AD to an existing AD Forest Please see the following for the instruction of adding a new AD to an existing AD Forest. Note: Need to run adprep /forestprep and adprep
More informationChange Schema Active Directory Password Mac Os X
Change Schema Active Directory Password Mac Os X Apple Store Mac iphone Watch ipad ipod itunes Support In OS X Mavericks, advanced AD options available via Directory Utility or the How often to require
More informationChange Schema Active Directory Domain Name 2003
Change Schema Active Directory Domain Name 2003 The Active Directory directory service is a distributed database that stores and Server and Windows Server 2003, the directory service is named Active Directory.
More informationChange Schema Active Directory Password Mac Users Can't
Change Schema Active Directory Password Mac Users Can't 164 Setting Up Home Folders for Active Directory User Accounts. 165 Setting a UNIX If You Can't Change a User's Password Type to Open Directory.
More informationMicrosoft - Configuring Windows Server 2008 Active Directory Domain Services (M6425)
Microsoft - Configuring Windows Server 2008 Active Directory Domain Services (M6425) Code: 6123 Lengt h: URL: 5 days View Online In this comprehensive course you will not only discuss the crucial concepts
More informationLDAP and Directories
LDAP and Directories Jim Leous leous@aset.psu.edu http://aset.psu.edu/leous/ Information Technology Services Penn State University Jim Leous, Information Technology Services, Penn State University http://et.aset.psu.edu/
More information70-742: Identity in Windows Server Course Overview
70-742: Identity in Windows Server 2016 Course Overview This course provides students with the knowledge and skills to install and configure domain controllers, manage Active Directory objects, secure
More informationCourse Outline. Pearson: MCSA Cert Guide: Identity with Windows Server
Course Outline Pearson: MCSA 70-742 Cert Guide: Identity with 20 Aug 2018 Contents 1. Course Objective 2. Pre-Assessment 3. Exercises, Quizzes, Flashcards & Glossary Number of Questions 4. Expert Instructor-Led
More informationVMware Identity Manager Connector Installation and Configuration (Legacy Mode)
VMware Identity Manager Connector Installation and Configuration (Legacy Mode) VMware Identity Manager This document supports the version of each product listed and supports all subsequent versions until
More informationIBM Tivoli Identity Manager Active Directory Reverse Password Synchronization Supplemental
IBM Tivoli Identity Manager Active Directory Reverse Password Synchronization Supplemental Sample Environment: ITIM 5.0 FP3 on AIX 5.3 ADAgent Version Active Directory 64-Bit (WinAD64) Adapter Tivoli Password
More informationIT Service Delivery And Support Week Four - OS. IT Auditing and Cyber Security Fall 2016 Instructor: Liang Yao
IT Service Delivery And Support Week Four - OS IT Auditing and Cyber Security Fall 2016 Instructor: Liang Yao 1 What is an Operating System (OS)? OS is a software that designed to run on specific hardware
More informationRed Hat Enterprise Linux 8.0 Beta
Red Hat Enterprise Linux 8.0 Beta Installing Identity Management and Access Control Getting started using your Identity Management and Access Control Last Updated: 2019-01-03 Red Hat Enterprise Linux
More informationSetting Up Identity Management
APPENDIX D Setting Up Identity Management To prepare for the RHCSA and RHCE exams, you need to use a server that provides Lightweight Directory Access Protocol (LDAP) and Kerberos services. The configuration
More informationVendor: IBM. Exam Code: C Exam Name: IBM Security Identity Manager V6.0 Implementation. Version: Demo
Vendor: IBM Exam Code: C2150-197 Exam Name: IBM Security Identity Manager V6.0 Implementation Version: Demo Question No : 1 Which is true for the relationship between provisioning policies, services, and
More informationAt Course Completion: Course Outline: Course 20742: Identity with Windows Server Learning Method: Instructor-led Classroom Learning
Course Outline: Course 20742: Identity with Windows Server 2016 Learning Method: Instructor-led Classroom Learning Duration: 5.00 Day(s)/ 40 hrs Overview: This five-day instructor-led course teaches IT
More informationOracle Privileged Account Manager
Oracle Privileged Account Manager Disaster Recovery Deployment Considerations O R A C L E W H I T E P A P E R A U G U S T 2 0 1 5 Disclaimer The following is intended to outline our general product direction.
More informationCourse Outline 20742B
Course Outline 20742B Module 1: Installing and configuring domain controllers This module describes the features of AD DS and how to install domain controllers (DCs). It also covers the considerations
More informationSingle Sign-On Showdown
Single Sign-On Showdown ADFS vs Pass-Through Authentication Max Fritz Solutions Architect SADA Systems #ITDEVCONNECTIONS Azure AD Identity Sync & Auth Timeline 2009 2012 DirSync becomes Azure AD Sync 2013
More informationUnderstanding the Local KDC
Appendix C Understanding the Local KDC The local Key Distribution Center (LKDC) facilitates single sign-on for Apple Filing Protocol (AFP) file sharing and screen sharing, and although it is outside the
More informationVMware AirWatch - Workspace ONE, Single Sign-on and VMware Identity Manager
VMware AirWatch - Workspace ONE, Single Sign-on and VMware Identity Table of Contents Lab Overview - HOL-1857-03-UEM - Workspace ONE UEM with App & Access Management... 2 Lab Guidance... 3 Module 1 - Workspace
More informationZENworks 11 Support Pack 4 User Source and Authentication Reference. October 2016
ZENworks 11 Support Pack 4 User Source and Authentication Reference October 2016 Legal Notices For information about legal notices, trademarks, disclaimers, warranties, export and other use restrictions,
More information"Charting the Course... MOC 6435 B Designing a Windows Server 2008 Network Infrastructure Course Summary
MOC 6435 B Designing a Windows Network Infrastructure Course Summary Description This five-day course will provide students with an understanding of how to design a Windows Network Infrastructure that
More informationApple EXAM - 9L OS X Support Essentials 10.9 Exam.
Apple EXAM - 9L0-415 OS X Support Essentials 10.9 Exam TYPE: DEMO http://www.examskey.com/9l0-415.html Examskey Apple 9L0-415 exam demo product is here for you to test the quality of the product. This
More informationSDC EMEA 2019 Tel Aviv
Integrating Storage Systems into Active Directory SDC EMEA 2019 Tel Aviv Volker Lendecke Samba Team / SerNet 2019-01-30 Volker Lendecke AD integration (2 / 16) Overview Active Directory Authentication
More informationSupporting a Widely Deployed Campus Shibboleth Implementation
Spring 2012 Internet2 Member Meeting April 25, 2012 Supporting a Widely Deployed Campus Shibboleth Implementation Russell Beall, University of Southern California Brendan Bellina, University of Southern
More informationWe're Not CIS. The Technical Staff & Computing Facilities. User Community. What CIS Does for CS. CIS: Computing and Information Services.
We're Not CIS CIS: Computing and Information Services The Technical Staff & Computing Facilities Campus Computing Provides the Univ's computing infrastructure Course registration (Banner) Payroll (via
More informationDesigning and Operating a Secure Active Directory.
Designing and Operating a Secure Active Directory Introduction Gil Kirkpatrick, CTO, NetPro Architect of NetPro Active Directory products Author of Active Directory Programming from SAMS Founder of the
More informationImplementing Microsoft Azure Infrastructure Solutions
Implementing Microsoft Azure Infrastructure Solutions OD20533C; On-Demand, Video-based Course Description This course is intended for IT professionals who are familiar with managing on-premises IT deployments
More informationDESIGNING AND IMPLEMENTING A SERVER INFRASTRUCTURE
Education and Support for SharePoint, Office 365 and Azure www.combined-knowledge.com COURSE OUTLINE DESIGNING AND IMPLEMENTING A SERVER INFRASTRUCTURE Microsoft Course Code 20413 About this course Get
More informationTestOut Server Pro 2016: Identity - English 4.0.x LESSON PLAN. Revised
TestOut Server Pro 2016: Identity - English 4.0.x LESSON PLAN Revised 2018-08-06 Table of Contents Introduction Section 0.1: Server Pro 2016: Identity Introduction... 4 Section 0.2: The TestOut Lab Simulator...
More informationAuthenticating Devices
Authenticating Devices Cisco TelePresence Deployment Guide Cisco VCS X6.1 D14819.01 May 2011 Contents Contents Document revision history... 4 Introduction... 5 Local database... 6 Configuration... 6 H.350
More informationDATACENTER MANAGEMENT Goodbye ADFS, Hello Modern Authentication! Osman Akagunduz
Goodbye ADFS, Hello Modern Authentication! Osman Akagunduz Osman Akagunduz Consultant @ InSpark Microsoft Country Partner Of The Year Twitter: @Osman_Akagunduz What s in this session The role of Azure
More informationFULLY QUALIFIED DOMAIN NAMES (FQDNS) IN ACTIVE DIRECTORY CANNOT EXCEED 64 CHARACTERS IN TOTAL LENGTH, INCLUDING HYPHENS AND PERIODS (.).
THE LIMITATION FOR THE NUMBER OF ENTRIES IN A DISCRETIONARY ACCESS CONTROL LIST (DACL) OR A SECURITY ACCESS CONTROL LIST (SACL) OF AN ACTIVE DIRECTORY OBJECT USING THE NTSECURITYDESCRIPTOR ATTRIBUTE IS
More informationDesigning an Exchange 2000/2003 Routing Group Connector Topology
Pg. 1 Designing an Exchange 2000/2003 Routing Group Connector Topology By: Craig Borysowich Chief Technology Architect Imagination Edge Inc. www.imedge.net Version 3.7 BACKGROUND Large Exchange 5.5 environments
More informationTIBCO StreamBase 10 Distributed Computing and High Availability. November 2017
TIBCO StreamBase 10 Distributed Computing and High Availability November 2017 Distributed Computing Distributed Computing location transparent objects and method invocation allowing transparent horizontal
More informationHorizon Cloud with On-Premises Infrastructure Administration Guide. VMware Horizon Cloud Service Horizon Cloud with On-Premises Infrastructure 1.
Horizon Cloud with On-Premises Infrastructure Administration Guide VMware Horizon Cloud Service Horizon Cloud with On-Premises Infrastructure 1.3 Horizon Cloud with On-Premises Infrastructure Administration
More informationCourse Outline. Pearson: MCSA Cert Guide: Identity with Windows Server 2016 (Course & Lab)
Course Outline Pearson: MCSA 70-742 Cert Guide: Identity with Windows Server 2016 (Course & Lab) 27 Jun 2018 Contents 1. Course Objective 2. Pre-Assessment 3. Exercises, Quizzes, Flashcards & Glossary
More informationSecurity Provider Integration Kerberos Authentication
Security Provider Integration Kerberos Authentication 2017 Bomgar Corporation. All rights reserved worldwide. BOMGAR and the BOMGAR logo are trademarks of Bomgar Corporation; other trademarks shown are
More informationIdentity Management In Red Hat Enterprise Linux. Dave Sirrine Solutions Architect
Identity Management In Red Hat Enterprise Linux Dave Sirrine Solutions Architect Agenda Goals of the Presentation 2 Identity Management problem space What Red Hat Identity Management solution is about?
More informationManaging External Identity Sources
CHAPTER 5 The Cisco Identity Services Engine (Cisco ISE) integrates with external identity sources to validate credentials in user authentication functions, and to retrieve group information and other
More informationFull Circle: The Journey To Consumerism. Charles Edge
Full Circle: The Journey To Consumerism Charles Edge Have we spent the last decade over-complicating our deployments? Have we spent the last decade over-protecting our users? What do you call solid gold
More informationEscape from the Identity crisis with FreeIPA
Escape from the Identity crisis with FreeIPA Identity Management What is Identity Management? Identity management (IdM) describes the management of individual principals, their authentication, authorization,
More informationChapter 4: Managing the Directory 4.1: Overview of Managing the Directory
Chapter 4: Managing the Directory Page 1 of 75 Chapter 4: Managing the Directory 4.1: Overview of Managing the Directory In This Section: DNS and Active Directory Configuring a Domain Controller Creating
More informationDesigning and Implementing a Server 2012 Infrastructure
Designing and Implementing a Server 2012 Infrastructure Course 20413C 5 Days Instructor-led, Hands-on Introduction This 5-day instructor-led course provides you with the skills and knowledge needed to
More informationOverview. Audience Profile. Module Title : 20410DC -Installing and Configuring Windows Server Course Outline :: 20410DC::
Module Title : 20410DC -Installing and Configuring Windows Server 2012 Duration : 5 days Overview Get hands-on instruction and practice installing and configuring Windows Server 2012, including Windows
More informationMicrosoft Designing and Implementing a Server Infrastructure
1800 ULEARN (853 276) www.ddls.com.au Microsoft 20413 - Designing and Implementing a Server Infrastructure Length 5 days Price $4290.00 (inc GST) Version C Overview Get hands-on instruction and practice
More informationUser Guide. Version R92. English
AuthAnvil User Guide Version R92 English October 9, 2015 Agreement The purchase and use of all Software and Services is subject to the Agreement as defined in Kaseya s Click-Accept EULATOS as updated from
More informationAndrew Bartlett Hawker College
Directory Services in an Education Network Andrew Bartlett Hawker College Andrew Bartlett EducationLinux 2005 1 Who Am I? Andrew Bartlett Samba Team Student Network Administrator Hawker College, ACT Andrew
More informationApple OS Deployment Guide for the Enterprise
Apple OS Deployment Guide for the Enterprise So your organization is about to deploy Mac, iphone, ipad and/or Apple TV to your users and you re not sure where to start? That s where the Apple management
More informationDirectory Integration with VMware Identity Manager
Directory Integration with VMware Identity Manager VMware AirWatch 9.1 This document supports the version of each product listed and supports all subsequent versions until the document is replaced by a
More informationCourse 10972B: Administering the Web Server (IIS) Role of Windows Server
Course 10972B: Administering the Web Server (IIS) Role of Windows Server Course Outline Module 1: Understanding and Installing Internet Information Services In this module, you will learn about the infrastructure
More informationVMware Identity Manager Administration
VMware Identity Manager Administration VMware Identity Manager 2.4 This document supports the version of each product listed and supports all subsequent versions until the document is replaced by a new
More information