Upload File

web identity manager

prev
next
out of 4
Download Web Identity Manager

Upload: rosario-turco

Post on 08-Apr-2018

214 views

Category:

Documents


0 download

Report

TRANSCRIPT

  • 8/6/2019 Web Identity Manager

    1/4

    1

    WIMGeneral Users Guide

    Rosario Turco (Naples

    Italy) [email protected]

    DescriptionWhen we have got a Web Application, we also have many questions:

    1. How can we protect the Web Application

    System?

    2. How can we get the profiling capabilities

    and maintain the provisioning of users externally

    at the Web Application System?

    3. How can we obtain the association

    between functionality and profile of user?

    mailto:[email protected]:[email protected]

  • 8/6/2019 Web Identity Manager

    2/4

    2

    WIM accelerate your development:

    1) It is a external framework , you can use and attach at your web applications.

    2) You must only design your web applications, keeping in mind the security constraints of WIM, so you can

    maximize the potential of WIM.

    3) WIM is a simple and secure system with SSO, https and a policy server (SPOS) for web applications. It is

    suitable for small and medium enterprises, with low cost but high potential. WIM helps you to centralize

    the username/password cycle provisioning on SPOS, to assign a profile at the user on each Web

    applications (the user can have different profiles, one on each system), to have encrypted password, to

    change the expired passwords (each three months). WIM also offers an agent CPOS for login

    authentication in https and API for SSO.

    SPOS is a Simple Policy Server (SPOS.war), with KBFE (Knowledge Base Framework Engine) and Tomcat

    technology. It must be centralized for all system application.

    CSPOS is the agent, the client of SPOS (CSPOS.war), with Tomcat & Struts2 Interceptor technology. It must

    be installed on each system application.

    You can introduce or no, AFPS. AFPS (Associated Functionality & Profile Server) can use KBFE (See KBFE

    Users Guide on SourceForge; in the software of WIM you have kbfe.jar) to model an ontology for

    Functionality, Profile and relation. In this case you models with Proteg your ontology. You can develop

    AFPS yourself or if you want, you can also use a database for this. The database must have a table for

    functionality, a table for profile, a table of association.

    The software is available onhttp://rturco.users.sourceforge.net/

    http://rturco.users.sourceforge.net/http://rturco.users.sourceforge.net/http://rturco.users.sourceforge.net/

  • 8/6/2019 Web Identity Manager

    3/4

  • 8/6/2019 Web Identity Manager

    4/4

    4

    CSPOS configuration

    CSPOS is the agent that you must configure on each system for authentication.

    Under %CATALINA_HOME%/bin put CSPOS.properties, log4j.properties

    Put CSPOS.war under %CATALINA_HOME%/webapps

    Start Tomcat, so CSPOS.war is exploded in a directory

    Stop Tomcat

    Copy the content of lib.zip in %CATALINA_HOME%/webapps/WEBINF/lib

    In CSPOS dir you see in resourse struts.xml and index.jsp in WebContent.

    Where do we attach our web application?index.jsp is only an example but you mut substitute it with your main servlet. In your main servlet you must

    control on the session if username, profile, oursystem aren't null, otherwise you must do

    response.sendRedirect("Logout.jsp") or response.sendRedirect("Login.jsp").

    Then you must write your servlet in file struts.xml in substitution of index.jsp (See in WebContent of

    CSPOS.war).

    The PROFILE parameter you can get from session.getAttribute("PROFILE") for you application. CPOS sets

    USERNAME, PROFILE and OURSYSTEM, which your main servlet must read on the session.

    Can we change the layout of Login page?

    Yes, you can customize the Login.jsp with layout of your web application. You must open the war andsubstitute Login.jsp with yours.

    Where is Logout?You must insert the logout in each page of your application. An example of Logout is here.

    Logout

    SuggestYou must made your Web Application keeping in mind the security constraints of WIM, so you can

    maximize the potential of WIM.

    SSL configuration SPOS e CSPOSYou must configure SPOS and CSPOS with SSL. A tutorial ishttp://techtracer.com/2007/09/12/setting-up-

    ssl-on-tomcat-in-3-easy-steps/

    http://techtracer.com/2007/09/12/setting-up-ssl-on-tomcat-in-3-easy-steps/http://techtracer.com/2007/09/12/setting-up-ssl-on-tomcat-in-3-easy-steps/http://techtracer.com/2007/09/12/setting-up-ssl-on-tomcat-in-3-easy-steps/http://techtracer.com/2007/09/12/setting-up-ssl-on-tomcat-in-3-easy-steps/http://techtracer.com/2007/09/12/setting-up-ssl-on-tomcat-in-3-easy-steps/http://techtracer.com/2007/09/12/setting-up-ssl-on-tomcat-in-3-easy-steps/

Novell Identity Manager Roles Based Provisioning … · 6 Identity Manager Roles Based Provisioning Module 4.0.1 User Application: ... Section 2.1, “Installing the Identity Manager

VMware Identity Manager Administration - VMware Identity Manager 2 · VMware Identity Manager Administration VMware Identity Manager 2.7 This document supports the version of each

IBM Security Identity Manager: Amazon Web …public.dhe.ibm.com/software/security/products/isim/...That server communicates with the A WS IAM server . 2 IBM Security Identity Manager:

IBM Tivoli Identity Manager Overview - · PDF fileIBM Tivoli Identity Manager Overview April 2011 . ... Tivoli Identity Manager automates, audits, and remediates user access rights

CA, Inc. CA Identity Manager r12.1 Identity Manager 12.5 Security

Oracle Identity Manager Architecture · Oracle Identity Manager Architecture Oracle Identity Manager is Oracle’s identity EXECUTIVE SUMMARY management solution for enterprise user

Novell Identity Manager Troubleshooting

Oracle Identity Manager Architecture · Oracle Identity Manager Architecture ... This layer also manages the pool of Java ... The Oracle Identity Manager Web Application is built

IPD - Forefront Identity Manager

NetIQ Identity Manager · The Identity Manager Driver Administration Guide provides information about administration tasks that are common to all Identity Manager drivers. Intended

NetIQ Identity Manager · 2021. 3. 26. · NetIQ® Identity Manager Administrator’s Guide to the Identity Applications January 2021

NetIQ Identity Manager · 2020. 9. 23. · 6 Contents 4 Managing Identity Manager Versions 121 Key Differences in Identity Manager Versions

McAfee Cloud Identity Manager Syncplicity Cloud Connector ...€¦ · McAfee Cloud Identity Manager Syncplicity Cloud Connector Guide 5 1.0 Introduction to McAfee Cloud Identity Manager

Tivoli Identity Manager

Novell Identity Manager ® novdocx (en) 13 May 2009 AUTHORIZED DOCUMENTATION Identity Manager 3.6.1 Driver for SAP HR Implementation Guide Identity Manager

Novell Identity Manager · Identity Manager 3.6.1 Driver for SAP Business Logic Implementation Guide Identity Manager 3.6.1 ... (iManager Only) ... A software system for planning

IBM® Security Identity Manager Web Services API - GoonIT

Oracle Identity Manager Integration Approach for Office · PDF fileOracle Identity Manager Integration Approach for Office 365 ... ORACLE IDENTITY MANAGER INTEGRATION APPROACH FOR

Novell Identity Manager · Novell ® novdocx (en) 17 September 2009 AUTHORIZED DOCUMENTATION Identity Manager 3.5.1 Installation Guide Identity Manager 3.5.1 December 23, 2009

Comparing forefront identity manager vs. other identity managers

FIware Identity Manager

IPD - Forefront Identity Manager version 1.1 - Forefront Iden…  · Web viewMicrosoft Forefront Identity Manager 2010. ... This guide relies on best practices and real-world experience

VMware Identity Manager™€¦ · VMware Identity Manager Accelerator Service Kit Installation and Configuration Procedures VMware Identity Manager™ 3-Node Cluster Customer Success

Forefront Identity Manager

NetIQ Identity Manager

Novell Identity Manager

Tivoli Identity Manager - IBMpublib.boulder.ibm.com/.../en_US/HTML/CiscoSecACS.pdf · Tivoli ® Identity Manager IBM Tivoli Identity Manager CiscoSecure ACS Adapter for Windows Installation

NetIQ Identity Manager · Figure 1-1 Password Management with Identity Manager Identity Manager provides synchronization of passwords between the Identity Vault and connected systems

oracle identity manager training |oam training | oracle identity manager course

VMware Identity Manager Administration - VMware Identity ...pubs.vmware.com/identity-manager-27/topic/com... · VMware Identity Manager Administration VMware Identity Manager 2.7

CA Identity Manager™ Identity Suite... · 2014-10-06 · CA Identity Manager Management Console .....15 How to Access the CA Identity Manager Management Console.....16 How to Create

Installing and Configuring VMware Identity Manager for Windows … · 2020-02-24 · Identity Manager for Windows Installing and Configuring VMware Identity Manager provides information

McAfee Cloud Identity Manager ServiceNow Cloud Connector …€¦ · McAfee Cloud Identity Manager ServiceNow Cloud Connector Guide 5 1.0 Introduction to McAfee Cloud Identity Manager

Oracle Identity Manager Integration Implementation Guide ... · 4. System Description . 4.1 . About Oracle Identity Manager . Oracle Identity Manager is an identity management product

NetIQ Identity Manager 4.8 Release Notes · 2020-05-28 · NetIQ Identity Manager 4.8 Release Notes 1 NetIQ Identity Manager 4.8 Release Notes October 2019 NetIQ Identity Manager