1

Copyright © 2012, Oracle and/or its affiliates. All rights reserved.
The following is intended to outline our general product direction. It
is intended for information purposes only, and may ...
Servicios avanzados de
directorio
David Rodríguez-Barbero
Security Presales Team Leader
Agenda
 Directory Services Plus
 Oracle Unified Directory

 Oracle Virtual Directory
 Conclusiones

4

Copyright © 201...
Factores de evolución
Porcentaje de escrituras en aumento
• Datos de Personalización
• Atributos de localización
• Aplicac...
Necesidades de unificación
Convergencia de Directorios
• Capacidad de Integración como requisito
• Expansión de Servicios ...
Oracle Directory Services Plus
Oracle Directory Server
Enterprise Edition (ODSEE)

Oracle Virtual Directory
(OVD)

ODS Plu...
Oracle Unified Directory
100% Java, solución de directorio todo en uno, con
almacenamiento, proxy, sincronización y virtua...
Coexistencia OUD-ODSEE
 Totalmente compatible con ODSEE
 Replication gateway proporcionado como parte de OUD
– Replicaci...
Rendimiento en lectura y escritura
Comparación OUD vs ODSEE (*)
Import

DB size

3:36

80
60

2:24

40
1:12

20

0:00

0
D...
Oracle Virtual Directory
Directorio
Administradores

Directorio Virtual
• Consolidación en tiempo real
• Abstracción tecno...
Caso 1: Repositorio único de usuarios
Servicios web (*)

Active Directory
Oracle Virtual
Directory

Directorio LDAP

BB.DD...
Caso 2: Unión entre diferentes fuentes de datos

Directorio LDAP

Oracle Virtual
Directory
BB.DD. de
RR.HH.

13

Copyright...
Caso 3: Estandarización

InetOrgPerson
uid

14

Copyright © 2012, Oracle and/or its affiliates. All rights reserved.

Orac...
Caso 4: repositorio de usuarios de MS
SharePoint (*)
Active Directory Forest #1

Active Directory Forest #2

Oracle Virtua...
Conclusiones

 Solución de directorio completa:
– Almacenamiento, virtualización y sincronización

 Alto rendimiento, es...
17

Copyright © 2012, Oracle and/or its affiliates. All rights reserved.
www.oracle.com/Identity

www.facebook.com/OracleIDM
www.twitter.com/OracleIDM

blogs.oracle.com/OracleIDM

18

Copyright ©...
19

Copyright © 2012, Oracle and/or its affiliates. All rights reserved.
20

Copyright © 2012, Oracle and/or its affiliates. All rights reserved.
Upcoming SlideShare
Loading in …5
×

07 servicios de directorio

350 views

Published on

0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
350
On SlideShare
0
From Embeds
0
Number of Embeds
2
Actions
Shares
0
Downloads
3
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide
  • Writes Needed Trend- Let's talk about the write requirement trend a little more.- Directories were originally for email lookups and graduated to doing single sign-on for the enterprise and extranets.- Even the SSO requirement has driven more writes in the form of last login and other similar data that is frequently subject to change- What we're seeing now goes far beyond this.- We have multiple customers that need to keep up with the activation flow for new iPhones on launch day.- We see a significant increase in the customers adding additional user self-service, broader sets of attributes to support relationships, and even a desire to support location-based attributes- All of this exponentially increases the write performance requirements of a directory, even if you're not the world's biggest telecommunications company. Unification- I read a great column by Dave Kearns of Network World last year in which he relayed a conversation he had with Vikas Mahajan of AARP lamenting the continued complexity of managing the various aspects of directory -- a technology that should be fairly far along on the maturity curve.- Most directory services, when fully deployed, need more than the core server. You may be looking at proxies, virtualization, synchronization, management tools, operations, and so forth...- Deploying all of this together involves learning several technologies and ensuring that they're certified together and operating together on an ongoing basis -- all of this before you even point your first application at it.- Customers aren't coming to us these days with large numbers of bugs -- they're coming to us and telling us that things are getting too complicated.
  • Oracle is uniquely positioned to be the premier vendor when it comes to directory services. As a result of Oracle and Sun combining forces we are uniquely positoned as not only the strongest and most complete identity management vendors but as the Only Vendor who can offer a directory server, directory integration platform and virtual directory in one license. This is critical to companies that want to world class performance, a complete tool set and want to reduce cost by managing one vendor rather than sourcing and negotiating with different providers. Let’s take a look at why this complete toolset is critical in today’s business environement.
  • Join The Community
  • 07 servicios de directorio

    1. 1. 1 Copyright © 2012, Oracle and/or its affiliates. All rights reserved.
    2. 2. The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Oracle’s products remains at the sole discretion of Oracle. 2 Copyright © 2012, Oracle and/or its affiliates. All rights reserved.
    3. 3. Servicios avanzados de directorio David Rodríguez-Barbero Security Presales Team Leader
    4. 4. Agenda  Directory Services Plus  Oracle Unified Directory  Oracle Virtual Directory  Conclusiones 4 Copyright © 2012, Oracle and/or its affiliates. All rights reserved.
    5. 5. Factores de evolución Porcentaje de escrituras en aumento • Datos de Personalización • Atributos de localización • Aplicaciones móviles Billones Millardos Mobile Millones Enterprise/ Extranet Reads:60% Writes:40% Host Access Miles Reads:70% Writes:30% Reads:80% Writes:20% Reads:90% Writes:10% 5 Cloud and Social Networking Copyright © 2012, Oracle and/or its affiliates. All rights reserved. Rendimiento en lectura todavía importante • Miles de millones de usuarios y dispositivos • Millones de operaciones por segundo
    6. 6. Necesidades de unificación Convergencia de Directorios • Capacidad de Integración como requisito • Expansión de Servicios compartidos vs Linea de Negocio Business Affiliates • Requisitos de Seguridad y Cumplimiento Virtual and Subsidiaries Storage Corporate LDAP Employees/Partners/Customers Customer LDAP Extranet LDAP 6 Synch LOB Copyright © 2012, Oracle and/or its affiliates. All rights reserved. Convergencia y Unificación • TCO menor • Administración menos costosa • Mejor experiencia de usuario
    7. 7. Oracle Directory Services Plus Oracle Directory Server Enterprise Edition (ODSEE) Oracle Virtual Directory (OVD) ODS Plus Oracle Internet Directory (OID) 7 Copyright © 2012, Oracle and/or its affiliates. All rights reserved. Oracle Unified Directory (OUD)
    8. 8. Oracle Unified Directory 100% Java, solución de directorio todo en uno, con almacenamiento, proxy, sincronización y virtualización Servicios de directorio unificados • Un solo componente para todas las necesidades de directorio. • 100% Java con soporte a múltiples plataformas con despliegue simplificado. Escalabilidad • Alto rendimiento tanto en operaciones de lectura como de escritura • Autenticación hasta para miles de millones de usuarios y dispositivos Integrabilidad • Soporte 100% a estándares para simplificar la integración con aplicaciones • Totalmente compatible con ODSEE • Lo que funciona con ODSEE funciona con OUD 8 Copyright © 2012, Oracle and/or its affiliates. All rights reserved.
    9. 9. Coexistencia OUD-ODSEE  Totalmente compatible con ODSEE  Replication gateway proporcionado como parte de OUD – Replicación bidireccional con ODSEE – Convivencia en entornos mixtos de OUD y ODSEE – Actualización de ODSEE a OUD sin pérdidas de servicio (“zero down time”) ODSEE ODSEE Directory Server 1 ODSEE Directory Server 2 9 Copyright © 2012, Oracle and/or its affiliates. All rights reserved. OUD OUD Rep.Gateway OUD Rep.Gateway OUD Directory Server 1 OUD Directory Server 2
    10. 10. Rendimiento en lectura y escritura Comparación OUD vs ODSEE (*) Import DB size 3:36 80 60 2:24 40 1:12 20 0:00 0 DS 6.3.1 ODSEE 11gPS1 OUD 11GPS1 DS 6.3.1 Search OUD 11GPS1 Modify 100000 6000 5000 4000 3000 2000 1000 0 80000 60000 40000 20000 0 DS 6.3.1 10 ODSEE 11gPS1 ODSEE 11gPS1 Copyright © 2012, Oracle and/or its affiliates. All rights reserved. OUD 11GPS1 DS 6.3.1 ODSEE 11gPS1 OUD 11GPS1 (*) Datos de la prueba: 10M de entradas, 4kbytes y 120 atributos por entrada Hardware: 2 servidores X4170 con 2CPU 4cores, 2.5 GHz y 64 Gb RAM
    11. 11. Oracle Virtual Directory Directorio Administradores Directorio Virtual • Consolidación en tiempo real • Abstracción tecnológica • Reducción de complejidad Directorios de terceros Empleados Bases de datos Clientes y Proveedores 11 Copyright © 2012, Oracle and/or its affiliates. All rights reserved.
    12. 12. Caso 1: Repositorio único de usuarios Servicios web (*) Active Directory Oracle Virtual Directory Directorio LDAP BB.DD. 12 Copyright © 2012, Oracle and/or its affiliates. All rights reserved. (*) Conexión a otros repositorios que lo permitan mediante desarrollo en Java
    13. 13. Caso 2: Unión entre diferentes fuentes de datos Directorio LDAP Oracle Virtual Directory BB.DD. de RR.HH. 13 Copyright © 2012, Oracle and/or its affiliates. All rights reserved.
    14. 14. Caso 3: Estandarización InetOrgPerson uid 14 Copyright © 2012, Oracle and/or its affiliates. All rights reserved. Oracle Virtual Directory AD Person saMAccountName Active Directory
    15. 15. Caso 4: repositorio de usuarios de MS SharePoint (*) Active Directory Forest #1 Active Directory Forest #2 Oracle Virtual Directory Directorio LDAP BB.DD. 15 Copyright © 2012, Oracle and/or its affiliates. All rights reserved. (*) o cualquier otra aplicación con la limitación de conexión a un único directorio
    16. 16. Conclusiones  Solución de directorio completa: – Almacenamiento, virtualización y sincronización  Alto rendimiento, escalabilidad y disponibilidad  Múltiples arquitecturas posibles – Replicación, distribución, balanceo, proxy, DR, …  Integración con ODSEE existentes y migraciones con “zero down time” 16 Copyright © 2012, Oracle and/or its affiliates. All rights reserved.
    17. 17. 17 Copyright © 2012, Oracle and/or its affiliates. All rights reserved.
    18. 18. www.oracle.com/Identity www.facebook.com/OracleIDM www.twitter.com/OracleIDM blogs.oracle.com/OracleIDM 18 Copyright © 2012, Oracle and/or its affiliates. All rights reserved.
    19. 19. 19 Copyright © 2012, Oracle and/or its affiliates. All rights reserved.
    20. 20. 20 Copyright © 2012, Oracle and/or its affiliates. All rights reserved.

    ×