2013 Open Stack Identity Summit - France

Use of OpenAM at VAL-I-PAC
About myself
• Jan Van den Bergh
j.vandenbergh@aca-it.be
@janvdbergh

• IAM Architect and Security Specialist at ACA ITSol...
About VAL-I-PAC
• Non-profit organization consisting of about 50 companies
from a broad cross section of industries.
• Con...
The application landscape
Amazon EC2 Cloud

MonaLisa+

ODO

CRM

Leonardo

IBM
Cognos

Google
Apps

OpenAM
Key features
• Different authentication mechanisms:
Username / password – Belgian eID card – MyDigipass

• Different integ...
Key features
• Leverages the EC2 cloud.
• Quickly set up / replace hosts.
• Add environments when they are needed.
Later enhancements
• Automatic deployments using Chef.
• HTML 5 adaptive screen layout.

• Reusable components:
• OpenAM c...
Some best practices
• Use OpenAM only for access management.
• Do not add new features to the UI.
(Instead, set up a diffe...
Upcoming SlideShare
Loading in …5
×

OpenAM Best Practices: Use of OpenAM at VAL-I-PAC

1,573 views

Published on

ACA IT-Solutions Security Specialist Jan Van den Bergh details OpenAM best practices at VAL-I-PAC as part of a joint Case Study session with Everett and IS4U, moderated by ForgeRock VP of Services Steve Ferris and Director of Support Tim Rault-Smith.

Published in: Technology, Business
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
1,573
On SlideShare
0
From Embeds
0
Number of Embeds
6
Actions
Shares
0
Downloads
32
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

OpenAM Best Practices: Use of OpenAM at VAL-I-PAC

  1. 1. 2013 Open Stack Identity Summit - France Use of OpenAM at VAL-I-PAC
  2. 2. About myself • Jan Van den Bergh j.vandenbergh@aca-it.be @janvdbergh • IAM Architect and Security Specialist at ACA ITSolutions.
  3. 3. About VAL-I-PAC • Non-profit organization consisting of about 50 companies from a broad cross section of industries. • Controls how industrial packaging waste is managed in Belgium. • Provides services to over 8.000 Belgian companies.
  4. 4. The application landscape Amazon EC2 Cloud MonaLisa+ ODO CRM Leonardo IBM Cognos Google Apps OpenAM
  5. 5. Key features • Different authentication mechanisms: Username / password – Belgian eID card – MyDigipass • Different integration mechanisms: SAML – Agent-based – Custom connector (OSGI). • Automatic deployment using scripts: • Quickly deploy and redeploy different environments. • Reduces errors and down-time.
  6. 6. Key features • Leverages the EC2 cloud. • Quickly set up / replace hosts. • Add environments when they are needed.
  7. 7. Later enhancements • Automatic deployments using Chef. • HTML 5 adaptive screen layout. • Reusable components: • OpenAM connector for custom applications (replaces agents). • Custom authentication modules (eID – OpenID – RememberMe). • Deployment scripts. • Invite mechanism (= delegated administration) • SaaS model using REST services.
  8. 8. Some best practices • Use OpenAM only for access management. • Do not add new features to the UI. (Instead, set up a different application using the SDK.) • Invest in automated install and configuration. • Do not underestimate the required effort.

×