Managing Oracle IdM on VMware vSphere

Managing Oracle IdM with VMware vSphere 4.0
Steve Tout
Sr. Security Engineer
September, 2010

Virtualization is yielding new vantage points through which the future of the data center may be managed, if not controlled.

Managing Oracle IdM at VMware
Building new IdM environments in the most efficient and cost-effective way possible
Scale out your infrastructure to satisfy your growing business needs and IT requirements
Manage data, apply patches, hot fixes, firmware updates and system wide upgrades

Build: Cloning OAM & OID Solution Overview
1. Clone the Database Instance
2. Clone the OID instance
3. Reconfigure cloned OID
4. Rename the existing container in OID
5. Clone/Provision (or install) OAM components against cloned OID
6. Copy IdM configurations from the old namespace to the new namespace
7. Update all OAM References
Prod IdM
MacBook Pro Monster © 2010 Mac Mcrae http://macmcrae.com

Refresh: Automated User Data Refresh Solution Overview
Refresh your environment up to 36x faster
1
Source LDAP
1. Shell Command initiated to backup app configuration from Source OID
2. PPM gets response back for job completion
3. Shell Command initiated to purge all app data (Optional: or optimize for later retrieval)
4. Shell command initiated to restore app configuration to Source OID.
5. PPM gets response back for job completion
2
Unix Shell
PPM Console
3
4
Target LDAP
5

Scale: Provision New Servers On Demand
Simplify scaling your IdM/IAM infrastructure

Environment Proliferation – No New Environments!
Consolidate by virtualizing IdM infrastructure and namespace with cloud architectures
The IdM footprint is ripe for consolidation and resource sharing
Troubleshooting and supporting13 IdM environments is a drag on developer productivity and IT agility
Costs are compounded due to lack of automated configuration management and migration/sync tools
Most companies cannot and will not have enough qualified admins to manage this proliferation
Prod
Stage
Perf
NIM
Test
Dev
High
Low
Cost To Maintain

Rethinking IdM for 2010 And Beyond
Identify leverage points for managing IdM in your environment
It’s not business-as-usual. Private Cloud adoption must be guided on a fast track to realize time-to-value and improve operational efficiency
Higher level conversations are required to organize IT resources with the mindset of moving towards a Private Cloud and enabling IT-As-A-Service for IdM with standards like SAML, XACML, SPML, OAuth2, et al.
The cost of not capitalizing on the potential of Private Cloud is so high that it warrants a closer look at how IdM (in particular) and SDLC environments (in general) should be architecturally viewed

Questions

Further Reading
Steve’s Blog
http://www.stevetout.com
VMware & Oracle Alliance Website
http://www.vmware.com/oracle

Appendix
Additional Reference Slides

Step 2 – Block Level Replication of Oracle Data
RM Server
Primary Symmetrix
Target Symmetrix
Target System
Source System
User data loaded from target to source system using SRDF
15-36x faster than Bulkdelete and Bulkload(than OID alone)

PPM Workflow Overview

http://www.stevetout.com	527
http://blog.stevetout.com	2
http://feeds.feedburner.com	2
http://static.slidesharecdn.com	1
http://webcache.googleusercontent.com	1
http://stevetout.com.tempwebpage.com	1
http://www.stevetout.com HTTP	1

Managing Oracle IdM on VMware vSphere

by Steve Tout on Sep 22, 2010

Accessibility

Categories

Tags

Upload Details

Usage Rights

7 Embeds 535

Statistics

Managing Oracle IdM on VMware vSphere — Presentation Transcript