web gis deployment for administrators -...
TRANSCRIPT
![Page 1: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/1.jpg)
Web GIS Deployment for AdministratorsVanessa Ramirez
Solution Engineer, Natural Resources, Esri
![Page 2: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/2.jpg)
Agenda• Web GIS Concepts• Web GIS Deployment Patterns• Components of an On-Premises Web GIS• Federation of Server with Portal• Security• Q&A
![Page 3: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/3.jpg)
Web GIS Concepts
![Page 4: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/4.jpg)
Web Maps
Layers
AppsDesktop
Server GISWeb Scenes
Web GIS | Transformation of the ArcGIS Platform
![Page 5: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/5.jpg)
Geoinformation Model | Abstracts and Organizes Geospatial Data
Apps
Layers
Distributed Data
Geoinformation Model
Real-Time
Enterprise Data
Imagery
Web Maps
WebScenes
GIS Maps & Data
Portal
![Page 6: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/6.jpg)
Web MapsWeb ScenesWeb Layers
Apps
Users
Services
Data
Web GISPervasive use of web layers, scenes, and maps
within all of the ArcGIS apps
Server GISSilo’d use of GIS services within custom applications
App
Users
Services
Data
… n+1
portal
Web GIS | How is it Different from Server GIS?
![Page 7: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/7.jpg)
• Deliver information products as apps (including all of the ArcGIS apps) to the right user at the right time
P O
R T
A L
Maps Layers Tools Files
SD
Ks
/ AP
Is
Users * Groups * Items * Tags(Content and Capabilities)
CRM• Salesforce.com• Microsoft Dynamics
BI• IBM Cognos• SAP Business
Objects• Microstrategy
MicrosoftOffice• Excel• PowerPoint
Other• Social• Weather• Traffic• IOT Feeds
EXT
ER
NA
L S
YS
TEM
S A
ND
SE
RV
ICE
SS
DK
s / A
PIs
INFR
AS
TRU
CTU
RE
Analysis
Visualization
DataManagement
Analysis
Visualization
DataManagement
Dat
a an
d S
tora
ge
Patterns of Business Behavior
AP
PS
LocationEnablement
DataManagement Analysis Field
Mobility
Visualization(OperationalAwareness)
ConstituentEngagement
Solutions
SD
Ks
/ AP
Is
SD
Ks
/ AP
Is
Web GIS | Components & Characteristics
![Page 8: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/8.jpg)
• Deliver information products as apps (including all of the ArcGIS apps) to the right user at the right time
• Geoinformation model, content management, and sharing model
P O
R T
A L
Maps Layers Tools Files
SD
Ks
/ AP
Is
Users * Groups * Items * Tags(Content and Capabilities)
CRM• Salesforce.com• Microsoft Dynamics
BI• IBM Cognos• SAP Business
Objects• Microstrategy
MicrosoftOffice• Excel• PowerPoint
Other• Social• Weather• Traffic• IOT Feeds
EXT
ER
NA
L S
YS
TEM
S A
ND
SE
RV
ICE
SS
DK
s / A
PIs
INFR
AS
TRU
CTU
RE
Analysis
Visualization
DataManagement
Analysis
Visualization
DataManagement
Dat
a an
d S
tora
ge
Patterns of Business Behavior
AP
PS
LocationEnablement
DataManagement Analysis Field
Mobility
Visualization(OperationalAwareness)
ConstituentEngagement
Solutions
SD
Ks
/ AP
Is
SD
Ks
/ AP
Is
Web GIS | Components & Characteristics
![Page 9: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/9.jpg)
P O
R T
A L
Maps Layers Tools Files
SD
Ks
/ AP
Is
Users * Groups * Items * Tags(Content and Capabilities)
CRM• Salesforce.com• Microsoft Dynamics
BI• IBM Cognos• SAP Business
Objects• Microstrategy
MicrosoftOffice• Excel• PowerPoint
Other• Social• Weather• Traffic• IOT Feeds
EXT
ER
NA
L S
YS
TEM
S A
ND
SE
RV
ICE
SS
DK
s / A
PIs
INFR
AS
TRU
CTU
RE
Analysis
Visualization
DataManagement
Analysis
Visualization
DataManagement
Dat
a an
d S
tora
ge
Patterns of Business Behavior
AP
PS
LocationEnablement
DataManagement Analysis Field
Mobility
Visualization(OperationalAwareness)
ConstituentEngagement
Solutions
SD
Ks
/ AP
Is
SD
Ks
/ AP
Is
Web GIS | Components & Characteristics
• Deliver information products as apps (including all of the ArcGIS apps) to the right user at the right time
• Geoinformation model, content management, and sharing model
• Integration with other systems and services
![Page 10: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/10.jpg)
Web GIS Deployment Patterns
![Page 11: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/11.jpg)
Web GIS Deployment Patterns | Overview
On-premisesSaaS & Public Cloud Hybrid
![Page 12: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/12.jpg)
Deployment Patterns | Drivers
On-PremisesOnline
• Limited IT resources• IT mandate to be SaaS or
“cloud first”• New to GIS
• Want to enable Web GIS while managing content & capabilities on private infrastructure
• Use hosted services, content and capabilities as needed
• Must maintain control of compute environment
• Need full control over data and system security
![Page 13: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/13.jpg)
Deployment Patterns | System Management
SaaS & Public Cloud Hybrid On-premises
Application Esri + Customer Esri/Customer Customer
Network Esri Esri/Customer Customer
Security Esri Esri/Customer Customer
Infrastructure Cloud Service Provider Esri/Customer Customer
![Page 14: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/14.jpg)
Deployment Patterns| Users & Apps
ArcGIS
ArcGIS
Intranet
ArcGIS
ArcGIS
Intranet
“Internal” Users “External” Users
Can typically access internal & external web resources
Can typically access only external web resources
![Page 15: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/15.jpg)
Selecting the Right Pattern(s) | Conceptual Level
ConsiderationsIT Maturity Low, Moderate, Advanced
IT & CIO Focus Infrastructure, Integration, Innovation
Cloud Policy / Preference Cloud First, Ok w/ Cloud, Cloud Averse
Infrastructure Elasticity Easy, Moderately Easy, or Hard to Provision Infrastructure
Data Sensitivity (security) Very Sensitive (e.g. HIPPA), Business Sensitive, Somewhat, Not Sensitive
GIS Workflows (next 2-3 years) Web Mapping, Cartographic Mapping, 3D, Analysis, Real-time, Big Data
Public / Constituent Engagement Heavy, Some, None
Level of Collaboration / Sharing External and Internal, Internal Only, Limited, None
Use of 3rd Party Services Prefer, Ok, None
Preference for COTS or Custom COTS, Custom, No Preference
Comfort Outsourcing to Esri Very, Some, Limited, Note
Service Level Agreement None, 95%, 99% +
Disaster Recovery Strategy None, Future, Imminent
![Page 16: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/16.jpg)
Components of an On-Premises Web GIS
![Page 17: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/17.jpg)
Web GIS | Anatomy of the Portal
Desktop Web Device
Server Online Content and Services
portal
In the SaaS offering, ArcGIS Online, the portal is maintained by Esri in the cloud:
For an on premise deployment using Portal for ArcGIS there are three main components that make up a Web GIS:
Portal for ArcGIS
Hosting server(ArcGIS Server)
ArcGIS Data Store
![Page 18: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/18.jpg)
Web GIS | Anatomy of the Portal
Portal for ArcGIS
Hosting server(ArcGIS Server)
ArcGIS Data Store
On-premises Web GIScomponents
Supports hosted data as well as the app and collaboration infrastructure;does not replace Server GIS infrastructure
Connects to Databy reference
Server
Supports publishing of authoritative datafrom enterprise geodatabases;
can be used in conjunction with a Web GIS
Server GIS infrastructure
System of Engagement System of Record
Enterprisegeodatabase
![Page 19: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/19.jpg)
Organization
Item UserGroup
Application Web Map Web Layer
Service
Dataset
Web Scene
Web GIS | The Geoinformation Model
![Page 20: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/20.jpg)
PortalGeoServicesGeodata
Feature Class
Service
Service
Service
Web Layer
Web Layer
Web Layer
Web GIS| The Role of Server for ArcGIS
![Page 21: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/21.jpg)
Feature Class Service
Web Layer
Web Layer
Web Layer
Geodata GeoServices Portal
Web GIS| The Role of Server for ArcGIS
![Page 22: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/22.jpg)
Wells Wells
Wells by Status
Proposed Wells
Active Wells
Geodata GeoServices Portal
Web GIS| The Role of Server for ArcGIS
![Page 23: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/23.jpg)
Publishportal
Publisher Standalone GIS Server Portal for ArcGIS
portalPublish & registerfrom Desktop Client
Manually linked URL
Web GIS| Referenced Architecture
![Page 24: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/24.jpg)
DemoRegistering Portal Content in a Referenced Architecture
![Page 25: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/25.jpg)
Web GIS| Enterprise Data Store (SDE)
Server(visualization)
Server(analysis)
GDB Administrator
Portal
Enterprise Geodatabases & Files
(ArcMap)
(ArcMap)
Publisher
![Page 26: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/26.jpg)
• System of Record- Authoritative Data
• Capabilities- Map Services- Image Services- Geoprocessing Services- Geocoders- Geodata Services
GP Geocode Geodata Image Map
But what about all the data that gets created through a system of engagement? How do we architect for that…?
Web GIS| Enterprise Data Store (SDE)
![Page 27: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/27.jpg)
Federation of Server with Portal
![Page 28: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/28.jpg)
Federation| Referenced vs. Federated
My Layer
My Service
Portal
My Layer
My Service
Portal
Referenced Federated
1st Login
2nd Login
1st Login
SSO
![Page 29: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/29.jpg)
• Server + Portal Share an Identity Store
• Portal items created for existing services (owned by federating admin)
• ALL new services get a portal item owned by portal user
• Access to Secure Server URLs through portal users ONLY
• Security goes from community based -> Ownership Based
Federation| What Happens on Federation?
My Layer
My Service
Portal
Federated
1st Login
SSO
![Page 30: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/30.jpg)
• Create a fully integrated SSO across an on-premises Web GIS implementation (e.g. IWA)
• Leverage Portal’s ownership based security model
• Publish content directly to your Portal
Federation| Advantages
![Page 31: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/31.jpg)
Publish
portal
Publisher Federated GIS Server
Portal for ArcGIS
Service is automatically added to the Portal
Federation| Architecture
![Page 32: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/32.jpg)
DemoFederated Portal & Server for ArcGIS
![Page 33: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/33.jpg)
Server & Data Stores | Enterprise Managed (SDE) vs. ArcGIS Managed
Server(hosting)
Server(visualization)
Server(analysis)
ArcGIS ManagedGDB Administrator
Portal
Enterprise ManagedData Store (SDE)
Portal
Publisher(ArcMap or Pro)(Pro)
ArcGIS ManagedData Store
ArcGIS Data StoreGeodatabases & Files
(ArcMap)
(ArcMap)
Publisher
![Page 34: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/34.jpg)
GIS Servers Hosting ServersTiled maplayers
3D Scenes
Featurelayers
Map Image GP Geocode Geodata
Server(hosting)
ArcGIS Managed
Portal
ArcGIS ManagedData Store
ArcGIS Data Store
Server(visualization)
Server(analysis)
GDB Administrator
Portal
Enterprise ManagedData Store (SDE)
Geodatabases & Files
(ArcMap)
(ArcMap)
Publisher
![Page 35: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/35.jpg)
• Publish large number of hosted feature layers• Publish hosted scene layers to Portal• Archive high volume, real-time data• Created backups of hosted content automatically• Failover Capabilities
Web GIS| Why ArcGIS Data Store?
Tiled maplayers
3D Scenes
Featurelayers
![Page 36: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/36.jpg)
• Use Cases- Esri Maps for Office- Survey123- Analysis Tools- Drag + Drop CSV- Upload Shapefile- Anything that mimics a “hosted” experience…
Web GIS| Why ArcGIS Data Store?
![Page 37: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/37.jpg)
• Your architecture will impact end-user capabilities • Always plan with the business cases in mind• Tie your tehcnical GIS to business value for greatest success
Web GIS| Key Takeaways
![Page 38: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/38.jpg)
DemoProviding an On-Premises Hosting Experience in Portal
![Page 39: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/39.jpg)
Web GIS | Anatomy of the Portal
Desktop Web Device
Server Online Content and Services
portal
In the SaaS offering, ArcGIS Online, the portal is maintained by Esri in the cloud:
For an on premise deployment using Portal for ArcGIS there are three main components that make up a Web GIS:
Portal for ArcGIS
Hosting server(ArcGIS Server)
ArcGIS Data Store
![Page 40: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/40.jpg)
Security
![Page 41: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/41.jpg)
Web MapsWeb ScenesWeb Layers
Apps
Users
Services
Data
Web GISPervasive use of web layers, scenes, and maps
within all of the ArcGIS apps
Server GISSilo’d use of GIS services within custom applications
App
Users
Services
Data
… n+1
portal
Web GIS | How is it Different from Server GIS?
![Page 42: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/42.jpg)
• Named users- License software for use- Specify permissions- Enable ownership
• Benefits- Create & manage your
own mapping content- Control sharing via groups- Setup and access your
favorites from anywhere- Identify authoritative
content contributors
Security| Identity Matters
![Page 43: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/43.jpg)
Security | Key Concepts
Organization User Identity
Role Privilege
Group Item
1+ 0..1
1+
1
0+ 0+
Aut
hent
icat
ion
Authorization (content)
Authorization (capabilities)
1+
0+
![Page 44: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/44.jpg)
• Named User- Own content or groups- Join groups
• Groups- Control access- Organize items
• Items- Files: PDF, MPK, XLS, etc.- Links: Services & applications
• Tags- Index content
Users Groups
TagsItems
Own or Join
Own
Index
IndexOrganize and Secure
Security | Information Model
![Page 45: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/45.jpg)
+ +
GIS portal
Named Users
User Publisher Administrator
Security | User Hierarchy
![Page 46: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/46.jpg)
• Built-In Identity Store
• Integrated Window Authentication (IWA)
• SAML (Security Assertion Markup Language)
Security | Authentication Models
![Page 47: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/47.jpg)
Characteristics:• Default / No Setup• Quick & Easy• Users are managed separately from ADWhen You Might Use It:• Small Number of Users• No need for AD Integration
Security | Built-In Identity Store
Portal for ArcGIS
UsersGroups
![Page 48: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/48.jpg)
Characteristics:• Integrated with Active Directory• ONLY in Portal for ArcGIS• SSO Experience• Supports Enterprise Groups• No “built-in” access
When You Might Use It:• All Portal Users are Maintained within AD• You want to leverage AD User and Groups• You want a SSO Experience• Do not want to double manage
Security | Integrated Windows Authentication
Portal for ArcGIS Window Users
UsersGroups
![Page 49: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/49.jpg)
What is SAML?• SAML is a standard that allows for exchanging authentication and authorization
data between parties• Three Players in SAML
- Service Provider (Portal for ArcGIS)- Identity Provider (e.g. AD FS)- User
Security | SAML
UserIdentity Provider
AD FS
Service ProviderPortal for ArcGIS
1) Initial service request
2) Redirect to IdP3) IdP authentication
4) Return SAML token5) SAML token allows access
ArcGIS Server
![Page 50: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/50.jpg)
When You Might Use It:• ArcGIS Online
- Only Enterprise/SSO Option• Portal for ArcGIS
- Allow built-in + Enterprise access- Allow access from multiple
domains in an AD Forest
Security | SAML
Portal for ArcGIS
Users
SAML(e.g., ADFS)
Remoteuser store
Groups
![Page 51: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/51.jpg)
DemoSingle Sign-On with IWA vs. SAML
![Page 52: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/52.jpg)
• No such thing as a standalone Portal- It is a portion of your on-premises Web
GIS
• Architect with your users in mind• Server/Portal Federation unlocks
additional functionality• Pick the security model that fits your
needs
Summary | Key Takeaways
Desktop Web Device
Server Online Content and Services
Portal
![Page 53: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/53.jpg)
Questions?
![Page 54: Web GIS Deployment for Administrators - Esriproceedings.esri.com/library/userconf/petrol16/papers/petrol_53.pdf · CRM • Salesforce.com • Microsoft Dynamics. BI • IBM Cognos](https://reader031.vdocuments.us/reader031/viewer/2022011723/5e8475deb708ce4ec662e12a/html5/thumbnails/54.jpg)
Thank youPlease remember to fill out a survey