SlideShare a Scribd company logo
1 of 29
Download to read offline
Magnolia Conference 2009         © deron GmbH   September 200




Identity Management and Magnolia

                       Ralf Hirning
Magnolia Conference 2009   © deron GmbH   September 200




Introduction

IDM User Study 2009

IDM – an Overview

IDM Magnolia Integration

Integration Module
 Integration Module
Magnolia Conference 2009   © deron GmbH   September 200




Introduction

IDM User Study 2009

IDM – an Overview

IDM Magnolia Integration

Integration Module
 Integration Module
Magnolia Conference 2009     © deron GmbH   September 200


Company
 Spin Off from Fraunhofer Gesellschaft
 Foundation in 2001
 25 employees
 Locations
    Headoffice Stuttgart
    Köln / Burscheid
    Hamburg
    Zürich
Magnolia Conference 2009    © deron GmbH   September 200


Ralf Hirning
 15 years IT consulting and project management
 10 years CMS projects
 Magnolia projects
 Magnolia training
 Now: Identity Management consulting
Magnolia Conference 2009   © deron GmbH   September 200




Introduction

IDM User Study 2009

IDM – an Overview

IDM Magnolia Integration

Integration Module
 Integration Module
Magnolia Conference 2009   © deron GmbH   September 200


IDM: IT Business Process Management
Magnolia Conference 2009                                      © deron GmbH   September 200


Identity Management Usage

                       Identity Manag ement E ins atz
                                               23%
                                                     yes
                 34%

            no                                                    Ja

                                                                  In E inführung
                                                     7%   introducing
                                                                In P lanung

                                                                  Nein




  © deron                              36%   planned
Magnolia Conference 2009                                                                                  © deron GmbH                September 200


Definition of Processes ...
                                                          D e fin itio n d e r IT -G e s c h ä fts p ro z e s s e
                                               Interner Mitarbeiter [m it IdM]                                                Interner Mitarbeiter [ohne IdM]
                                               E x terner Mitarbeiter [m it IdM]                                              E x terner Mitarbeiter [ohne IdM]




 100%


                  90%


                  80%


                  70%
Häufig keit (in P roz ent)




                  60%

                  50%


                  40%


                  30%


                  20%


                  10%


                             0%
                                   A nleg en                        A k tivieren                                    D eak tivieren                              L ös c hen
                                  create                     activate                                       deactivate
                                                                                   IT -G e sc h ä ftsp ro z e sse
                                                                                                                                                        delete
© deron
Magnolia Conference 2009                                                                        © deron GmbH                      September 200


but ...
                                                                           D e fin itio n d e r Ä n d e r u n g s p ro z e s s e
                                                                Interner Mita rbeiter [m it IdM]                                   Interner Mita rbeiter [ohne IdM]
                                                                E x terner Mitarbeiter [m it IdM]                                  E x terner Mitarbeiter [ohne IdM]




    100%


                     90%


                     80%


                     70%
Häufig keit (in P roz ent)




                     60%


                     50%


                     40%


                     30%


                     20%


                     10%


                             0%

                                  change
                                   Na m ens änderung
                                                     change
                                                      P as s wortänderung
                                                                          changewec hs el change tion
                                                                            A bteilung s                    Mitarbeiterfunk        project c haftresponsibility for
                                                                                                                                   P rojek tm itg lieds   V era ntwortung
                                                                                                                                                           tec hnis c he-/

© deron
                                  name               password organization e d e s Ä n d e rn s
                                                                            IT -G e sc h ä fts p ro z e ss
                                                                                                           function                member technicalc ounts
                                                                                                                                                        funk tions ac
                                                                                                                                                                        accounts
Magnolia Conference 2009   © deron GmbH   September 200




Introduction

IDM User Study 2009

IDM – an Overview

IDM Magnolia Integration

Integration Module
 Integration Module
Magnolia Conference 2009                           © deron GmbH                     September 200


IDM functional layers
                                                                                              Approval process
                                                                      Entry new
                                                                   User information     for new accounts


 Business-Layer:
 Personal information
 Business role model
 IT business process
                                       HR            Orga




 IDM-Layer:
 Central identity store
                                                                              IDM
 Middleware


 Infrastructure:
 Provisioning                                   Microsoft
                                            Active Directory
                                                                Help Desk        SAP    VPN
                                                                                                       further
                                                                                                     applications

 Authorization management
                                                                                                                     ...
 synchronization                                   ADS           Help Desk        SAP   VPN
                                                                                                         ...
                                                                                                               ...
Magnolia Conference 2009   © deron GmbH                                September 200


Business Processes & IDM Components

                                                  Components of
                                                  Bausteine des
                                         Identity & Access Management


                                                Meta-Store für Accounts

                                                      Provisioning

                                                Workflow-Management

                                                   User Self Servie
                                                 Benutzer Self Service

                                               Role Based Access Control

                                                    Single Sign On

                                                       Federation

                                                         Audit

                                                Public Key Infrastructure
Magnolia Conference 2009   © deron GmbH                        September 200


IDM: The classical approach
pros:                                     HR

    data synchronization                            > Regelbasierte
                                                      rule based processing
                                                    Verarbeitung der
    simple initial user setup                         of HR data
                                                    Informationen aus HR


    fast implementation

cons:                                    IDM

                                                    > Regelbasierte
    a complete base installation                      rule based
                                                    Weiterverarbeitung
                                                      provisioning
                                                    der Daten
    is necessary
    no workflow integration
    overall benefits are low
                                         ADS
Magnolia Conference 2009   © deron GmbH   September 200


IDM: workflows and authorization management
pros:
    workflow integration
    extended user
    administration

cons:
    No auditing and reporting
    tools
    No role management
Magnolia Conference 2009                                  © deron GmbH                                           September 200


IDM: business roles & compliance
                                                                                                                    User-Self-Service
                                             > Personendaten                                                        > Access-Right Request
                                             > Orga-Zugehörigkeit
pros:                                        > ...
                                                                        HR      ORGA
                                                                                                      User
                                                                                                                    > Passwort-Self-Service
                                                                                                                    > ....




    audit and reporting in place
                                                                             RBAC
    extended user                                                                                                             > mehrstufiges
                                                                                                                              Genehmigungsverfahren

    administration                    Webfrontend für die
                                      IDM-Administration
                                                                                                                              > Eskalationsszenario
                                                                                                                              (Vertreterregelungen,
                                                                                                                              etc...)




cons:                                Administration                                 IDM
                                                                                                                              Manager A



    Additional expenses                Audit

    Long term strategy
                                                                                                                               Manager B

                                       Reporting

    necessary                                              > Regelbasierte
                                              Weiterverarbeitung der Daten                                                    Manager C


                                             > Anlage eines
                                            Home-Directorys                               > Anlegen des Benutzers
                                                                                          und Zuordnung innerhalb
                                                                                          der Struktur
                                                                                                                     > Automatisierte Zuordnung
                                                                                                                     der Gruppenzugehörigkeit

                                                                                    ADS


                                                                                                              X              X
Magnolia Conference 2009                                       © deron GmbH                                September 200


Real Challenge: multiple different Life-Cycles

  Mitarbeiter
  Life-Cycle           Anlegen
                                                                                                                       Anlegen
                                                                  Anlegen


  Löschen
                                    Aktivieren /
                                                                 Mail-                                             Projekt-Life-Cycle
                                    Reaktivieren             Verteilerlisten
                                                              Life-Cycle                                                                Ändern




                                                   Löschen
                                                                            Ändern
       Deaktivieren               Ändern
                                                                                                                        Prüfen




                                                                                                     Anlegen




                                                                                               Sammeluser Life-Cycle

                                                                                     Löschen                           Ändern




                                                                                                      Prüfen
Magnolia Conference 2009                     © deron GmbH   September 200


Real Challenge: multiple different change types
   Mitarbeiter
   Life-Cycle          Anlegen




   Löschen
                                      Aktivieren /
                                      Reaktivieren




        Deaktivieren                Ändern

                                                  name
                                                 function
                                               organization
                                             project member
                                             deprovisioning
                                                    ...
Magnolia Conference 2009                   © deron GmbH        September 200


Real Challenge: organizational change


                                  t



        OU ‘old’                      OU ‘new’


         Old Permissions
                             New Permissions



                                                 OU = organizational unit
Magnolia Conference 2009   © deron GmbH   September 200




Introduction

IDM User Study 2009

IDM – an Overview

IDM Magnolia Integration

Integration Module
 Integration Module
Magnolia Conference 2009              © deron GmbH   September 200


Email Integration



                                    IDM


                   Send email




                                  Magnolia


                  Admin             JCR
Magnolia Conference 2009              © deron GmbH   September 200


LDAP Integration



                                    IDM


                         Sync




     LDAP

                                  Magnolia
     LDAP Connector

                                    JCR
Magnolia Conference 2009                          © deron GmbH   September 200


Direct Integration

                                          IDM



                                                Create
                                  Query         Modify
                                                Delete


                                   Remote Module

                                      Magnolia


                                          JCR
Magnolia Conference 2009   © deron GmbH   September 200




Introduction

IDM User Study 2009

IDM – an Overview

IDM Magnolia Integration

Integration Module
 Integration Module
Magnolia Conference 2009        © deron GmbH   September 200


Remote Module - Filter
 Create filter to handle remote requests
 Define a URL pattern for the filter to handle
    /.remote/…
Magnolia Conference 2009   © deron GmbH   September 200


             Remote Module – XML Query
?xml version="1.0" encoding="UTF-8"?>
mgnl-command>
 <query repository="users"
   language="xpath"
   statement="//*"
   event-id="0815"/>
/mgnl-command>
Magnolia Conference 2009   © deron GmbH   September 200


Remote Module – XML Create
Magnolia Conference 2009     © deron GmbH    September 200


Remote Module – Config tag handler

                                Create tag handler for
                                    delete
                                    move
                                    rename
                                    …
Magnolia Conference 2009   © deron GmbH   September 200




Ralf Hirning
deron GmbH
Schelmenwasenstr. 32
70567 Stuttgart
Germany

More Related Content

Viewers also liked

Who is Katie Weis?
Who is Katie Weis?Who is Katie Weis?
Who is Katie Weis?katieweis
 
Package anything with fpm cookery
Package anything with fpm cookeryPackage anything with fpm cookery
Package anything with fpm cookeryMarcelo Pinheiro
 
Product Camp Customer Success for Product Managers
Product Camp Customer Success for Product ManagersProduct Camp Customer Success for Product Managers
Product Camp Customer Success for Product ManagersHaim Toeg
 
Automatiser le setup de vos projets avec Eclipse Oomph
Automatiser le setup de vos projets avec Eclipse OomphAutomatiser le setup de vos projets avec Eclipse Oomph
Automatiser le setup de vos projets avec Eclipse OomphJérémie Bresson
 
Comment Asciidoctor peut vous aider pour votre doc
Comment Asciidoctor peut vous aider pour votre docComment Asciidoctor peut vous aider pour votre doc
Comment Asciidoctor peut vous aider pour votre docJérémie Bresson
 
Writing documentation with Asciidoctor
Writing documentation  with  AsciidoctorWriting documentation  with  Asciidoctor
Writing documentation with AsciidoctorJérémie Bresson
 
Process Mining For Customer Support
Process Mining For Customer SupportProcess Mining For Customer Support
Process Mining For Customer SupportHaim Toeg
 
Augmented Reality, Artificial Intelligence, and Business Intelligence
Augmented Reality, Artificial Intelligence, and Business IntelligenceAugmented Reality, Artificial Intelligence, and Business Intelligence
Augmented Reality, Artificial Intelligence, and Business IntelligencePatrick
 

Viewers also liked (13)

Who is Katie Weis?
Who is Katie Weis?Who is Katie Weis?
Who is Katie Weis?
 
Idioms IváN
Idioms IváNIdioms IváN
Idioms IváN
 
Package anything with fpm cookery
Package anything with fpm cookeryPackage anything with fpm cookery
Package anything with fpm cookery
 
Multimedia
MultimediaMultimedia
Multimedia
 
Inglés 2
Inglés 2Inglés 2
Inglés 2
 
Product Camp Customer Success for Product Managers
Product Camp Customer Success for Product ManagersProduct Camp Customer Success for Product Managers
Product Camp Customer Success for Product Managers
 
Automatiser le setup de vos projets avec Eclipse Oomph
Automatiser le setup de vos projets avec Eclipse OomphAutomatiser le setup de vos projets avec Eclipse Oomph
Automatiser le setup de vos projets avec Eclipse Oomph
 
Rails OO views
Rails OO viewsRails OO views
Rails OO views
 
Comment Asciidoctor peut vous aider pour votre doc
Comment Asciidoctor peut vous aider pour votre docComment Asciidoctor peut vous aider pour votre doc
Comment Asciidoctor peut vous aider pour votre doc
 
Writing documentation with Asciidoctor
Writing documentation  with  AsciidoctorWriting documentation  with  Asciidoctor
Writing documentation with Asciidoctor
 
Process Mining For Customer Support
Process Mining For Customer SupportProcess Mining For Customer Support
Process Mining For Customer Support
 
Multimedia
MultimediaMultimedia
Multimedia
 
Augmented Reality, Artificial Intelligence, and Business Intelligence
Augmented Reality, Artificial Intelligence, and Business IntelligenceAugmented Reality, Artificial Intelligence, and Business Intelligence
Augmented Reality, Artificial Intelligence, and Business Intelligence
 

Similar to Magnolia And Idm

A Survival Guide For CIOs
A Survival Guide For CIOsA Survival Guide For CIOs
A Survival Guide For CIOsErgoGroup
 
Cebit 2013 Keynote
Cebit 2013 KeynoteCebit 2013 Keynote
Cebit 2013 KeynoteUnify
 
Neck Down Designing: using service design & bodystorming to move from EH to A...
Neck Down Designing: using service design & bodystorming to move from EH to A...Neck Down Designing: using service design & bodystorming to move from EH to A...
Neck Down Designing: using service design & bodystorming to move from EH to A...Izac Ross
 
Innovation Summit Presentation 2007 Miami
Innovation Summit Presentation 2007 MiamiInnovation Summit Presentation 2007 Miami
Innovation Summit Presentation 2007 MiamiIdris Mootee
 
Cloud – When the hype is over
Cloud – When the hype is overCloud – When the hype is over
Cloud – When the hype is overHenrik Hasselbalch
 
Presentation on M&amp;A integration @FCCS
Presentation on M&amp;A integration @FCCSPresentation on M&amp;A integration @FCCS
Presentation on M&amp;A integration @FCCSLudovic Sichere
 
DOCFLOW PROFILE: collaborative applications
DOCFLOW PROFILE: collaborative applicationsDOCFLOW PROFILE: collaborative applications
DOCFLOW PROFILE: collaborative applicationsDOCFLOW
 
9. fri 1045 1130 griffin - starting the sustainable analytic journey
9. fri 1045 1130 griffin - starting the sustainable analytic journey9. fri 1045 1130 griffin - starting the sustainable analytic journey
9. fri 1045 1130 griffin - starting the sustainable analytic journeyJon Hedlund
 
Itam Consulting Group Aug 2009
Itam Consulting Group Aug 2009Itam Consulting Group Aug 2009
Itam Consulting Group Aug 2009eashford
 
E&C Industry Review By Scott Boutwell Jan09
E&C Industry Review By Scott Boutwell Jan09E&C Industry Review By Scott Boutwell Jan09
E&C Industry Review By Scott Boutwell Jan09Scott Boutwell, LEED AP
 
Design For Innovation in Manufacturing (DFIM)
Design For Innovation in Manufacturing (DFIM)Design For Innovation in Manufacturing (DFIM)
Design For Innovation in Manufacturing (DFIM)Richard Platt
 
Gebiedsontwikkeling Rudy Stroink - TCN
Gebiedsontwikkeling Rudy Stroink - TCNGebiedsontwikkeling Rudy Stroink - TCN
Gebiedsontwikkeling Rudy Stroink - TCNRoger
 
Selling Document Management to the Mid Market
Selling Document Management to the Mid MarketSelling Document Management to the Mid Market
Selling Document Management to the Mid MarketJohn Mancini
 
Data modelling where did it all go wrong?
Data modelling where did it all go wrong?Data modelling where did it all go wrong?
Data modelling where did it all go wrong?Christopher Bradley
 
Architecture Driven IT Modernization &amp; Migration roadmap
Architecture Driven IT Modernization &amp; Migration roadmapArchitecture Driven IT Modernization &amp; Migration roadmap
Architecture Driven IT Modernization &amp; Migration roadmapiCMG International
 
Living social annie
Living social   annieLiving social   annie
Living social annieJustin Tran
 

Similar to Magnolia And Idm (20)

Sap
SapSap
Sap
 
A Survival Guide For CIOs
A Survival Guide For CIOsA Survival Guide For CIOs
A Survival Guide For CIOs
 
Cebit 2013 Keynote
Cebit 2013 KeynoteCebit 2013 Keynote
Cebit 2013 Keynote
 
Neck Down Designing: using service design & bodystorming to move from EH to A...
Neck Down Designing: using service design & bodystorming to move from EH to A...Neck Down Designing: using service design & bodystorming to move from EH to A...
Neck Down Designing: using service design & bodystorming to move from EH to A...
 
Dhm e_mls2market
 Dhm e_mls2market Dhm e_mls2market
Dhm e_mls2market
 
Innovation Summit Presentation 2007 Miami
Innovation Summit Presentation 2007 MiamiInnovation Summit Presentation 2007 Miami
Innovation Summit Presentation 2007 Miami
 
Cloud – When the hype is over
Cloud – When the hype is overCloud – When the hype is over
Cloud – When the hype is over
 
Presentation on M&amp;A integration @FCCS
Presentation on M&amp;A integration @FCCSPresentation on M&amp;A integration @FCCS
Presentation on M&amp;A integration @FCCS
 
DOCFLOW PROFILE: collaborative applications
DOCFLOW PROFILE: collaborative applicationsDOCFLOW PROFILE: collaborative applications
DOCFLOW PROFILE: collaborative applications
 
9. fri 1045 1130 griffin - starting the sustainable analytic journey
9. fri 1045 1130 griffin - starting the sustainable analytic journey9. fri 1045 1130 griffin - starting the sustainable analytic journey
9. fri 1045 1130 griffin - starting the sustainable analytic journey
 
Itam Consulting Group Aug 2009
Itam Consulting Group Aug 2009Itam Consulting Group Aug 2009
Itam Consulting Group Aug 2009
 
E&C Industry Review By Scott Boutwell Jan09
E&C Industry Review By Scott Boutwell Jan09E&C Industry Review By Scott Boutwell Jan09
E&C Industry Review By Scott Boutwell Jan09
 
Design For Innovation in Manufacturing (DFIM)
Design For Innovation in Manufacturing (DFIM)Design For Innovation in Manufacturing (DFIM)
Design For Innovation in Manufacturing (DFIM)
 
Social Networks & BPM af Thomas Stoesser, ARISalign
Social Networks & BPM af Thomas Stoesser, ARISalignSocial Networks & BPM af Thomas Stoesser, ARISalign
Social Networks & BPM af Thomas Stoesser, ARISalign
 
Gebiedsontwikkeling Rudy Stroink - TCN
Gebiedsontwikkeling Rudy Stroink - TCNGebiedsontwikkeling Rudy Stroink - TCN
Gebiedsontwikkeling Rudy Stroink - TCN
 
Executive perspective(3m)
Executive perspective(3m)Executive perspective(3m)
Executive perspective(3m)
 
Selling Document Management to the Mid Market
Selling Document Management to the Mid MarketSelling Document Management to the Mid Market
Selling Document Management to the Mid Market
 
Data modelling where did it all go wrong?
Data modelling where did it all go wrong?Data modelling where did it all go wrong?
Data modelling where did it all go wrong?
 
Architecture Driven IT Modernization &amp; Migration roadmap
Architecture Driven IT Modernization &amp; Migration roadmapArchitecture Driven IT Modernization &amp; Migration roadmap
Architecture Driven IT Modernization &amp; Migration roadmap
 
Living social annie
Living social   annieLiving social   annie
Living social annie
 

Recently uploaded

Introduction to Matsuo Laboratory (ENG).pptx
Introduction to Matsuo Laboratory (ENG).pptxIntroduction to Matsuo Laboratory (ENG).pptx
Introduction to Matsuo Laboratory (ENG).pptxMatsuo Lab
 
UiPath Studio Web workshop series - Day 6
UiPath Studio Web workshop series - Day 6UiPath Studio Web workshop series - Day 6
UiPath Studio Web workshop series - Day 6DianaGray10
 
Secure your environment with UiPath and CyberArk technologies - Session 1
Secure your environment with UiPath and CyberArk technologies - Session 1Secure your environment with UiPath and CyberArk technologies - Session 1
Secure your environment with UiPath and CyberArk technologies - Session 1DianaGray10
 
OpenShift Commons Paris - Choose Your Own Observability Adventure
OpenShift Commons Paris - Choose Your Own Observability AdventureOpenShift Commons Paris - Choose Your Own Observability Adventure
OpenShift Commons Paris - Choose Your Own Observability AdventureEric D. Schabell
 
Introduction to Quantum Computing
Introduction to Quantum ComputingIntroduction to Quantum Computing
Introduction to Quantum ComputingGDSC PJATK
 
Nanopower In Semiconductor Industry.pdf
Nanopower  In Semiconductor Industry.pdfNanopower  In Semiconductor Industry.pdf
Nanopower In Semiconductor Industry.pdfPedro Manuel
 
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...Will Schroeder
 
UiPath Platform: The Backend Engine Powering Your Automation - Session 1
UiPath Platform: The Backend Engine Powering Your Automation - Session 1UiPath Platform: The Backend Engine Powering Your Automation - Session 1
UiPath Platform: The Backend Engine Powering Your Automation - Session 1DianaGray10
 
Connector Corner: Extending LLM automation use cases with UiPath GenAI connec...
Connector Corner: Extending LLM automation use cases with UiPath GenAI connec...Connector Corner: Extending LLM automation use cases with UiPath GenAI connec...
Connector Corner: Extending LLM automation use cases with UiPath GenAI connec...DianaGray10
 
IaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdf
IaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdfIaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdf
IaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdfDaniel Santiago Silva Capera
 
Comparing Sidecar-less Service Mesh from Cilium and Istio
Comparing Sidecar-less Service Mesh from Cilium and IstioComparing Sidecar-less Service Mesh from Cilium and Istio
Comparing Sidecar-less Service Mesh from Cilium and IstioChristian Posta
 
Cloud Revolution: Exploring the New Wave of Serverless Spatial Data
Cloud Revolution: Exploring the New Wave of Serverless Spatial DataCloud Revolution: Exploring the New Wave of Serverless Spatial Data
Cloud Revolution: Exploring the New Wave of Serverless Spatial DataSafe Software
 
Spring24-Release Overview - Wellingtion User Group-1.pdf
Spring24-Release Overview - Wellingtion User Group-1.pdfSpring24-Release Overview - Wellingtion User Group-1.pdf
Spring24-Release Overview - Wellingtion User Group-1.pdfAnna Loughnan Colquhoun
 
Artificial Intelligence & SEO Trends for 2024
Artificial Intelligence & SEO Trends for 2024Artificial Intelligence & SEO Trends for 2024
Artificial Intelligence & SEO Trends for 2024D Cloud Solutions
 
20200723_insight_release_plan_v6.pdf20200723_insight_release_plan_v6.pdf
20200723_insight_release_plan_v6.pdf20200723_insight_release_plan_v6.pdf20200723_insight_release_plan_v6.pdf20200723_insight_release_plan_v6.pdf
20200723_insight_release_plan_v6.pdf20200723_insight_release_plan_v6.pdfJamie (Taka) Wang
 
Cybersecurity Workshop #1.pptx
Cybersecurity Workshop #1.pptxCybersecurity Workshop #1.pptx
Cybersecurity Workshop #1.pptxGDSC PJATK
 
Anypoint Code Builder , Google Pub sub connector and MuleSoft RPA
Anypoint Code Builder , Google Pub sub connector and MuleSoft RPAAnypoint Code Builder , Google Pub sub connector and MuleSoft RPA
Anypoint Code Builder , Google Pub sub connector and MuleSoft RPAshyamraj55
 
RAG Patterns and Vector Search in Generative AI
RAG Patterns and Vector Search in Generative AIRAG Patterns and Vector Search in Generative AI
RAG Patterns and Vector Search in Generative AIUdaiappa Ramachandran
 
UiPath Solutions Management Preview - Northern CA Chapter - March 22.pdf
UiPath Solutions Management Preview - Northern CA Chapter - March 22.pdfUiPath Solutions Management Preview - Northern CA Chapter - March 22.pdf
UiPath Solutions Management Preview - Northern CA Chapter - March 22.pdfDianaGray10
 
Videogame localization & technology_ how to enhance the power of translation.pdf
Videogame localization & technology_ how to enhance the power of translation.pdfVideogame localization & technology_ how to enhance the power of translation.pdf
Videogame localization & technology_ how to enhance the power of translation.pdfinfogdgmi
 

Recently uploaded (20)

Introduction to Matsuo Laboratory (ENG).pptx
Introduction to Matsuo Laboratory (ENG).pptxIntroduction to Matsuo Laboratory (ENG).pptx
Introduction to Matsuo Laboratory (ENG).pptx
 
UiPath Studio Web workshop series - Day 6
UiPath Studio Web workshop series - Day 6UiPath Studio Web workshop series - Day 6
UiPath Studio Web workshop series - Day 6
 
Secure your environment with UiPath and CyberArk technologies - Session 1
Secure your environment with UiPath and CyberArk technologies - Session 1Secure your environment with UiPath and CyberArk technologies - Session 1
Secure your environment with UiPath and CyberArk technologies - Session 1
 
OpenShift Commons Paris - Choose Your Own Observability Adventure
OpenShift Commons Paris - Choose Your Own Observability AdventureOpenShift Commons Paris - Choose Your Own Observability Adventure
OpenShift Commons Paris - Choose Your Own Observability Adventure
 
Introduction to Quantum Computing
Introduction to Quantum ComputingIntroduction to Quantum Computing
Introduction to Quantum Computing
 
Nanopower In Semiconductor Industry.pdf
Nanopower  In Semiconductor Industry.pdfNanopower  In Semiconductor Industry.pdf
Nanopower In Semiconductor Industry.pdf
 
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...
 
UiPath Platform: The Backend Engine Powering Your Automation - Session 1
UiPath Platform: The Backend Engine Powering Your Automation - Session 1UiPath Platform: The Backend Engine Powering Your Automation - Session 1
UiPath Platform: The Backend Engine Powering Your Automation - Session 1
 
Connector Corner: Extending LLM automation use cases with UiPath GenAI connec...
Connector Corner: Extending LLM automation use cases with UiPath GenAI connec...Connector Corner: Extending LLM automation use cases with UiPath GenAI connec...
Connector Corner: Extending LLM automation use cases with UiPath GenAI connec...
 
IaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdf
IaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdfIaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdf
IaC & GitOps in a Nutshell - a FridayInANuthshell Episode.pdf
 
Comparing Sidecar-less Service Mesh from Cilium and Istio
Comparing Sidecar-less Service Mesh from Cilium and IstioComparing Sidecar-less Service Mesh from Cilium and Istio
Comparing Sidecar-less Service Mesh from Cilium and Istio
 
Cloud Revolution: Exploring the New Wave of Serverless Spatial Data
Cloud Revolution: Exploring the New Wave of Serverless Spatial DataCloud Revolution: Exploring the New Wave of Serverless Spatial Data
Cloud Revolution: Exploring the New Wave of Serverless Spatial Data
 
Spring24-Release Overview - Wellingtion User Group-1.pdf
Spring24-Release Overview - Wellingtion User Group-1.pdfSpring24-Release Overview - Wellingtion User Group-1.pdf
Spring24-Release Overview - Wellingtion User Group-1.pdf
 
Artificial Intelligence & SEO Trends for 2024
Artificial Intelligence & SEO Trends for 2024Artificial Intelligence & SEO Trends for 2024
Artificial Intelligence & SEO Trends for 2024
 
20200723_insight_release_plan_v6.pdf20200723_insight_release_plan_v6.pdf
20200723_insight_release_plan_v6.pdf20200723_insight_release_plan_v6.pdf20200723_insight_release_plan_v6.pdf20200723_insight_release_plan_v6.pdf
20200723_insight_release_plan_v6.pdf20200723_insight_release_plan_v6.pdf
 
Cybersecurity Workshop #1.pptx
Cybersecurity Workshop #1.pptxCybersecurity Workshop #1.pptx
Cybersecurity Workshop #1.pptx
 
Anypoint Code Builder , Google Pub sub connector and MuleSoft RPA
Anypoint Code Builder , Google Pub sub connector and MuleSoft RPAAnypoint Code Builder , Google Pub sub connector and MuleSoft RPA
Anypoint Code Builder , Google Pub sub connector and MuleSoft RPA
 
RAG Patterns and Vector Search in Generative AI
RAG Patterns and Vector Search in Generative AIRAG Patterns and Vector Search in Generative AI
RAG Patterns and Vector Search in Generative AI
 
UiPath Solutions Management Preview - Northern CA Chapter - March 22.pdf
UiPath Solutions Management Preview - Northern CA Chapter - March 22.pdfUiPath Solutions Management Preview - Northern CA Chapter - March 22.pdf
UiPath Solutions Management Preview - Northern CA Chapter - March 22.pdf
 
Videogame localization & technology_ how to enhance the power of translation.pdf
Videogame localization & technology_ how to enhance the power of translation.pdfVideogame localization & technology_ how to enhance the power of translation.pdf
Videogame localization & technology_ how to enhance the power of translation.pdf
 

Magnolia And Idm

  • 1. Magnolia Conference 2009 © deron GmbH September 200 Identity Management and Magnolia Ralf Hirning
  • 2. Magnolia Conference 2009 © deron GmbH September 200 Introduction IDM User Study 2009 IDM – an Overview IDM Magnolia Integration Integration Module Integration Module
  • 3. Magnolia Conference 2009 © deron GmbH September 200 Introduction IDM User Study 2009 IDM – an Overview IDM Magnolia Integration Integration Module Integration Module
  • 4. Magnolia Conference 2009 © deron GmbH September 200 Company Spin Off from Fraunhofer Gesellschaft Foundation in 2001 25 employees Locations Headoffice Stuttgart Köln / Burscheid Hamburg Zürich
  • 5. Magnolia Conference 2009 © deron GmbH September 200 Ralf Hirning 15 years IT consulting and project management 10 years CMS projects Magnolia projects Magnolia training Now: Identity Management consulting
  • 6. Magnolia Conference 2009 © deron GmbH September 200 Introduction IDM User Study 2009 IDM – an Overview IDM Magnolia Integration Integration Module Integration Module
  • 7. Magnolia Conference 2009 © deron GmbH September 200 IDM: IT Business Process Management
  • 8. Magnolia Conference 2009 © deron GmbH September 200 Identity Management Usage Identity Manag ement E ins atz 23% yes 34% no Ja In E inführung 7% introducing In P lanung Nein © deron 36% planned
  • 9. Magnolia Conference 2009 © deron GmbH September 200 Definition of Processes ... D e fin itio n d e r IT -G e s c h ä fts p ro z e s s e Interner Mitarbeiter [m it IdM] Interner Mitarbeiter [ohne IdM] E x terner Mitarbeiter [m it IdM] E x terner Mitarbeiter [ohne IdM] 100% 90% 80% 70% Häufig keit (in P roz ent) 60% 50% 40% 30% 20% 10% 0% A nleg en A k tivieren D eak tivieren L ös c hen create activate deactivate IT -G e sc h ä ftsp ro z e sse delete © deron
  • 10. Magnolia Conference 2009 © deron GmbH September 200 but ... D e fin itio n d e r Ä n d e r u n g s p ro z e s s e Interner Mita rbeiter [m it IdM] Interner Mita rbeiter [ohne IdM] E x terner Mitarbeiter [m it IdM] E x terner Mitarbeiter [ohne IdM] 100% 90% 80% 70% Häufig keit (in P roz ent) 60% 50% 40% 30% 20% 10% 0% change Na m ens änderung change P as s wortänderung changewec hs el change tion A bteilung s Mitarbeiterfunk project c haftresponsibility for P rojek tm itg lieds V era ntwortung tec hnis c he-/ © deron name password organization e d e s Ä n d e rn s IT -G e sc h ä fts p ro z e ss function member technicalc ounts funk tions ac accounts
  • 11. Magnolia Conference 2009 © deron GmbH September 200 Introduction IDM User Study 2009 IDM – an Overview IDM Magnolia Integration Integration Module Integration Module
  • 12. Magnolia Conference 2009 © deron GmbH September 200 IDM functional layers Approval process Entry new User information for new accounts Business-Layer: Personal information Business role model IT business process HR Orga IDM-Layer: Central identity store IDM Middleware Infrastructure: Provisioning Microsoft Active Directory Help Desk SAP VPN further applications Authorization management ... synchronization ADS Help Desk SAP VPN ... ...
  • 13. Magnolia Conference 2009 © deron GmbH September 200 Business Processes & IDM Components Components of Bausteine des Identity & Access Management Meta-Store für Accounts Provisioning Workflow-Management User Self Servie Benutzer Self Service Role Based Access Control Single Sign On Federation Audit Public Key Infrastructure
  • 14. Magnolia Conference 2009 © deron GmbH September 200 IDM: The classical approach pros: HR data synchronization > Regelbasierte rule based processing Verarbeitung der simple initial user setup of HR data Informationen aus HR fast implementation cons: IDM > Regelbasierte a complete base installation rule based Weiterverarbeitung provisioning der Daten is necessary no workflow integration overall benefits are low ADS
  • 15. Magnolia Conference 2009 © deron GmbH September 200 IDM: workflows and authorization management pros: workflow integration extended user administration cons: No auditing and reporting tools No role management
  • 16. Magnolia Conference 2009 © deron GmbH September 200 IDM: business roles & compliance User-Self-Service > Personendaten > Access-Right Request > Orga-Zugehörigkeit pros: > ... HR ORGA User > Passwort-Self-Service > .... audit and reporting in place RBAC extended user > mehrstufiges Genehmigungsverfahren administration Webfrontend für die IDM-Administration > Eskalationsszenario (Vertreterregelungen, etc...) cons: Administration IDM Manager A Additional expenses Audit Long term strategy Manager B Reporting necessary > Regelbasierte Weiterverarbeitung der Daten Manager C > Anlage eines Home-Directorys > Anlegen des Benutzers und Zuordnung innerhalb der Struktur > Automatisierte Zuordnung der Gruppenzugehörigkeit ADS X X
  • 17. Magnolia Conference 2009 © deron GmbH September 200 Real Challenge: multiple different Life-Cycles Mitarbeiter Life-Cycle Anlegen Anlegen Anlegen Löschen Aktivieren / Mail- Projekt-Life-Cycle Reaktivieren Verteilerlisten Life-Cycle Ändern Löschen Ändern Deaktivieren Ändern Prüfen Anlegen Sammeluser Life-Cycle Löschen Ändern Prüfen
  • 18. Magnolia Conference 2009 © deron GmbH September 200 Real Challenge: multiple different change types Mitarbeiter Life-Cycle Anlegen Löschen Aktivieren / Reaktivieren Deaktivieren Ändern name function organization project member deprovisioning ...
  • 19. Magnolia Conference 2009 © deron GmbH September 200 Real Challenge: organizational change t OU ‘old’ OU ‘new’ Old Permissions New Permissions OU = organizational unit
  • 20. Magnolia Conference 2009 © deron GmbH September 200 Introduction IDM User Study 2009 IDM – an Overview IDM Magnolia Integration Integration Module Integration Module
  • 21. Magnolia Conference 2009 © deron GmbH September 200 Email Integration IDM Send email Magnolia Admin JCR
  • 22. Magnolia Conference 2009 © deron GmbH September 200 LDAP Integration IDM Sync LDAP Magnolia LDAP Connector JCR
  • 23. Magnolia Conference 2009 © deron GmbH September 200 Direct Integration IDM Create Query Modify Delete Remote Module Magnolia JCR
  • 24. Magnolia Conference 2009 © deron GmbH September 200 Introduction IDM User Study 2009 IDM – an Overview IDM Magnolia Integration Integration Module Integration Module
  • 25. Magnolia Conference 2009 © deron GmbH September 200 Remote Module - Filter Create filter to handle remote requests Define a URL pattern for the filter to handle /.remote/…
  • 26. Magnolia Conference 2009 © deron GmbH September 200 Remote Module – XML Query ?xml version="1.0" encoding="UTF-8"?> mgnl-command> <query repository="users" language="xpath" statement="//*" event-id="0815"/> /mgnl-command>
  • 27. Magnolia Conference 2009 © deron GmbH September 200 Remote Module – XML Create
  • 28. Magnolia Conference 2009 © deron GmbH September 200 Remote Module – Config tag handler Create tag handler for delete move rename …
  • 29. Magnolia Conference 2009 © deron GmbH September 200 Ralf Hirning deron GmbH Schelmenwasenstr. 32 70567 Stuttgart Germany