The document discusses LDAP Synchronization Connector (LSC), an open source project for automatically synchronizing user identity data across different identity repositories like LDAP directories and databases. LSC can read/write to any repository using standard protocols, transform data on-the-fly, and adjust synchronization options. It aims to simplify maintaining consistent user identities when data is stored in multiple systems.

1. LSC @ 2011 . RMLL Sébastien Bahloul Jonathan Clarke

2. What? LSC @ 2011

3. Why ?

4. Goals

5. 3 minutes quick start

6. New version : 2.0

7. Roadmap

8. Why ? LDAP directories Present in a vast majority of corporations

9. Central authentication, identity management, …

10. Contain user accounts (identities) Simple, right? … well, yes, but … « HR already has software that only stores identity information in a database »

11. « We use Active Directory for our desktops and we need users' identities there too »

12. « XYZ software only uses a database »

13. Why ? Several different identity repositories How to make sure the same changes apply? New employees

14. Name changes (marriage), transfers...

15. Employees leaving Jim just got fired. Boss asks you to disable his account. Account S , that is. You do it... All done! But what about the account on the company blog? ARGH! Too late. What now!? FIRE THE SYSADMIN!!!?

16. Why ? Synchronize the repositories Spread the account status, information, etc... Manual synchronization? Leads to a mess , leaving old accounts active … Automatic synchronization?

17. Introduction Automatic synchronization It already exists, and works great Directory- / database- specific replication

18. Application- specific connectors (AD, SAP, etc) What about the rest? Between different databases, directories, files?

19. Different data models?

20. Using standards: LDAP, SQL, etc...?

21. About LSC Project What is LSC? LDAP Synchronization Connector

22. Open Source project

23. BSD licence

24. Written in Java

25. 5 years in the making

26. 3 years ago LSC-project.org created

27. ~10 regular contributors Website: http://lsc-project.org

28. Goals – functionality Read/write to any repository Database or LDAP directory or ?

29. Standard LDAPv3 operations

30. JDBC connectors for databases Transform data on-the-fly Adapt to a different data model

31. JavaScript based engine to manipulate data Adjustable updates: force values, insert defaults, merge values, don't touch...

32. Goals – usability Quickly implement a new synchronization

33. Highly configurable What exactly do we read?

34. Powerful transformations (correctness is important)

35. What exactly do we write? Run fast (performance is important)

36. Easy to setup

37. Philosophy Make it possible , now!

38. Make it more stable and safer Open Source benefits over home-grown scripts

39. More secure and better tested

40. Don't reinvent a buggy wheel! Make it faster and simpler Faster than writing home-grown scripts