Download as PDF, PPTX
Uploaded byFirelay
Using Liferay Portal with LDAP and Single sign-on
The document discusses implementing Liferay Portal with LDAP and Single Sign-On (SSO) within existing environments, highlighting risks such as user acceptance and security issues. It outlines potential solutions, including central user management and various LDAP and SSO options, emphasizing the benefits of streamlined authentication and user administration. The author, Sander Bilo, provides contact information and an overview of collaboration scenarios in legacy systems.
More Related Content
Similar to Using Liferay Portal with LDAP and Single sign-on
![How Big Brands are Taking Your Traffic in Alberta [Data Inside].pptx](https://cdn.slidesharecdn.com/ss_thumbnails/howbigbrandsaretakingyourtrafficinalbertadatainside-260123180142-42d276f3-thumbnail.jpg?width=640&height=640&fit=bounds)
Using Liferay Portal with LDAP and Single sign-on
- 1. Using Liferay portalwith LDAP and Single-Sign -On Sander Bilo Java/Linux consultant
- 2. Using Liferay portalwith LDAP and Single-Sign -On Sander Bilo Java/Linux consultant Or
- 3. Using Liferay portalwith LDAP and Single-Sign -On “how to connect your stuff” Sander Bilo Java/Linux consultant Or
- 4.
- 5.
- 6.
- 7. Scenario Introduction of Liferayas collaboration platform within an existing environment.
- 8.
- 9.
- 10. Risks • Legacy/other systems •User acceptance
- 11. Risks • Legacy/other systems •User acceptance • Security
- 12. Risks • Legacy/other systems •User acceptance • Security • (App.) Administrators / ICT departments
- 13.
- 14.
- 15. Legacy/other systems • ‘Thispiece of software is just better suited for the job’
- 16. Legacy/other systems • ‘Thispiece of software is just better suited for the job’ • ‘We don't have time to implement this functionality in Liferay (yet)’
- 17. Legacy/other systems • ‘Thispiece of software is just better suited for the job’ • ‘We don't have time to implement this functionality in Liferay (yet)’ • ‘Other parties use this software, we need it to stay compatible’
- 18. Legacy/other systems • ‘Thispiece of software is just better suited for the job’ • ‘We don't have time to implement this functionality in Liferay (yet)’ • ‘Other parties use this software, we need it to stay compatible’
- 19.
- 20. User acceptance • ‘Oh,no not another system I have to use’
- 21. User acceptance • ‘Oh,no not another system I have to use’ • ‘Do I also have to register here?’
- 22. User acceptance • ‘Oh,no not another system I have to use’ • ‘Do I also have to register here?’ • ‘My current tools work fine’
- 23. User acceptance • ‘Oh,no not another system I have to use’ • ‘Do I also have to register here?’ • ‘My current tools work fine’ • ‘This tool will make me obsolete!’
- 24. User acceptance • ‘Oh,no not another system I have to use’ • ‘Do I also have to register here?’ • ‘My current tools work fine’ • ‘This tool will make me obsolete!’ • ‘What is the login/password for this system? I lost track!’
- 25. User acceptance • ‘Oh,no not another system I have to use’ • ‘Do I also have to register here?’ • ‘My current tools work fine’ • ‘This tool will make me obsolete!’ • ‘What is the login/password for this system? I lost track!’
- 26.
- 27. Security • ‘I gota new password for this application, lets put it on a post-it’
- 28. Security • ‘I gota new password for this application, lets put it on a post-it’ • ‘Lets use the same password everywhere’
- 29. Security • ‘I gota new password for this application, lets put it on a post-it’ • ‘Lets use the same password everywhere’ • ..‘and put it on a post-it’
- 30. Security • ‘I gota new password for this application, lets put it on a post-it’ • ‘Lets use the same password everywhere’ • ..‘and put it on a post-it’ • ‘Just make everybody administrator so we don't have to think about roles for this system as well’
- 31. Security • ‘I gota new password for this application, lets put it on a post-it’ • ‘Lets use the same password everywhere’ • ..‘and put it on a post-it’ • ‘Just make everybody administrator so we don't have to think about roles for this system as well’
- 32.
- 33. (App.) Administrators • ‘Idon’t want to manage another application’
- 34. (App.) Administrators • ‘Idon’t want to manage another application’ • ‘How will I keep user-accounts in sync with reality?’
- 35.
- 36. Solutions • Central usermanagement
- 37. Solutions • Central usermanagement • Single point of authentication and authorization
- 38. Solutions • Central usermanagement • Single point of authentication and authorization • Integration of services (applications)
- 39. Solutions • Central usermanagement • Single point of authentication and authorization • Integration of services (applications) • Self-service for end users
- 40.
- 41. Solutions (LDAP) • ‘LightweightDirectory Access Protocol’ • Active Directory (Microsoft) • OpenDJ (ForgeRock) • OpenLDAP (OpenLDAP foundation) • eDirectory (Novell) • Directory Server Enterprise (Oracle)
- 42.
- 43. Solutions (LDAP) • Centraluser management
- 44. Solutions (LDAP) • Centraluser management • Single point of authentication
- 45. Solutions (LDAP) • Centraluser management • Single point of authentication • Most (larger) companies already have one
- 46.
- 47.
- 48.
- 49.
- 50.
- 51.
- 52.
- 53.
- 54.
- 55.
- 56.
- 57. Solutions (LDAP) LIFERAY LOGIN LDAP LOGIN PROFILE lastName: Janssen firstName:Piet email: p.j@comp.com
- 58.
- 59.
- 60.
- 61.
- 62.
- 63.
- 64. Solutions (SSO) • Oneaccount unlocks all
- 65. Solutions (SSO) • Oneaccount unlocks all • Self-service (profile page) for endusers
- 66. Solutions (SSO) • Oneaccount unlocks all • Self-service (profile page) for endusers • Policy management for connected systems
- 67.
- 68. Solutions (SSO) • CAS(Yale University)
- 69. Solutions (SSO) • CAS(Yale University) • Shibboleth (Internet2)
- 70. Solutions (SSO) • CAS(Yale University) • Shibboleth (Internet2) • OpenAM (ForgeRock)
- 71. Solutions (SSO) • CAS(Yale University) • Shibboleth (Internet2) • OpenAM (ForgeRock) • Access Manager (Oracle)
- 72. Solutions (SSO) • CAS(Yale University) • Shibboleth (Internet2) • OpenAM (ForgeRock) • Access Manager (Oracle) • Facebook Connect
- 73.
- 74.
- 75.
- 76.
- 77.
- 78.
- 79.
- 80.
- 81.
- 82.
- 83.
- 84.
- 85.
- 86.
- 87.
- 88.
- 89. Solutions (SSO) OPENAM LDAPLIFERAY LOGIN lastName: Janssen firstName:Piet email: p.j@comp.com
- 90. Solutions (SSO) OPENAM LDAPLIFERAY lastName: Janssen firstName:Piet email: p.j@comp.com
- 91.
- 92.
- 93. Solutions (SSO) OPENAM LDAPLIFERAY lastName: Janssen firstName:Piet email: p.j@comp.com TOKEN
- 94. Solutions (SSO) OPENAM LDAPLIFERAY lastName: Janssen firstName:Piet email: p.j@comp.com
- 95. Solutions (SSO) OPENAM LDAPLIFERAY lastName: Janssen firstName:Piet email: p.j@comp.com
- 96.
- 97.
- 98.
- 99.
- 100.
- 101.
- 102.
- 103.
- 104.
- 105.
- 106.
- 107. Solutions (SSO) OPENAM LDAPLIFERAY ERP lastName: Janssen firstName:Piet email: p.j@comp.com TOKEN
- 108.
- 109.
- 110.
- 111.
- 112. Benefits • One passwordto rule them all
- 113. Benefits • One passwordto rule them all • Central role, policy and user management
- 114. Benefits • One passwordto rule them all • Central role, policy and user management • Integration of legacy functionality
- 115.