SlideShare a Scribd company logo

FirstClass account automation

Download as PPTX, PDF
A
aptiris

The document outlines the goals of automating FirstClass account management, including components for installation and troubleshooting. It discusses the use of LDAP and data file services for external authentication and account provisioning, highlighting configuration options and challenges. The author, Gary Falcon, emphasizes the benefits of external authentication for users and administrators, while offering limited support avenues through Aptiris.

Technology
1 of 25
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
FirstClass Account Automation Gary Falcon October 2, 2012
Goals  What is possible  What components & tools to use X Step-by-step installation X Troubleshooting server-specific problems
Where are we going? 1. Using FC directory outside FirstClass 2. External authentication 3. Account provisioning
Topic 1 USING THE FIRSTCLASS DIRECTORY OUTSIDE FIRSTCLASS
Approaches  LDAP: Internet Services  LDAP: Directory Services  Data files / ODBC: Application Services
Why?  Spam filters  Web app authentication  Network copiers  PHP applications  Populate external systems
LDAP: Internet Services [Show Config]  Basic Internet Setup  Advanced Directory  LDAP Browser
LDAP: Directory Services [Config Highlights]  Directory Setup  Port, root DN  Show/Replicate  Replication > Filtering
LDAP Comparison Internet Services Directory Services  Authenticate with UserID  Authenticate with LDAP DN  All directory objects  Choice of directory objects using BaseDN  Global directory only  User contacts  ClientID as UID  UserID as UID  Less configurable  More configurable  LDAP-format DN
Data Exchange Files / ODBC  Build in FCAS  Custom built: export exactly what is required  Automate schedule  Write to text file or ODBC data source
Which to use? 1. Internet Services LDAP: First choice 2. Directory Services LDAP: When #1 doesn’t provide necessary attributes or function 3. Application Services: When LDAP functions aren’t available
Topic 2 EXTERNAL AUTHENTICATION
Why?  Easier for end-users  Convenient for administrators  Low risk  High reward
What?
Authentication Workflow Client User ID & Password FCS FCDS yes LDAP no controlled? yes FCDS no avail? yes AD no avail? yes Valid Valid no login? login? yes no Cache data in FCS Username Log user in or PW error
Authentication: Configuration [Config Highlights]  Operation mode: LDAP  Auth method: Remote  LDAP Server: required  Gateway: filtering  Change password: off
Challenges  Requires SSL for web logins  Most recent FCDS may not allow saved passwords
Topic 3 ACCOUNT PROVISIONING
FCDS Provisioning  Works with AD, OpenLDAP  With or without authentication  Account adds / removes / changes  Creates groups from OUs  Matches to sAMAccount Name (AD) or DN (LDAP)  One-way replication
Provisioning: Configuration [Config Highlights]  Operation mode: LDAP or Replication  Enable delete: OFF  Set schedule  Test in non-production environment
Challenges  OU structure vs/ FirstClass groups  AD Groups are not replicated  Will delete your directory if you tell it to
Custom Provisioning  Data can be brought in from any system  Handles account adds / removes / changes  Flexible handling of group associations  Custom apps can follow any required logic  Provisioning only; no authentication
Getting Help  Limited support from FirstClass  Aptiris can assist with:  Support (for Aptiris clients)  Implementation services  Ad-hoc consultation  info@aptiris.com / 877.864.3534
Wrap-Up QUESTIONS?
Thank you! Gary Falcon gfalcon@aptiris.com

More Related Content

PPTX
Adfs azure
Jethro Seghers
 
PPTX
Kerberos part 2
Spencer Harbar
 
PPTX
DD109 Claims Based AuthN in SharePoint 2010
Spencer Harbar
 
PPTX
DD105 Multi Tenancy in SharePoint 2010
Spencer Harbar
 
PPTX
Adfs Shib Interop Um Oxford
guestd9aa5
 
PDF
SharePoint 2013 - Migrating Legacy On-Premise Solutions to SharePoint Online ...
Eric Shupps
 
PDF
What's coming in WCM for Liferay 6.2?
Julio Camarero
 
PPTX
It112 SharePoint 2010 Mythbusters
Spencer Harbar
 
Adfs azure
Jethro Seghers
 
Kerberos part 2
Spencer Harbar
 
DD109 Claims Based AuthN in SharePoint 2010
Spencer Harbar
 
DD105 Multi Tenancy in SharePoint 2010
Spencer Harbar
 
Adfs Shib Interop Um Oxford
guestd9aa5
 
SharePoint 2013 - Migrating Legacy On-Premise Solutions to SharePoint Online ...
Eric Shupps
 
What's coming in WCM for Liferay 6.2?
Julio Camarero
 
It112 SharePoint 2010 Mythbusters
Spencer Harbar
 

What's hot (12)

PPTX
It114 Configuring SharePoint 2010 User Profile Sync
Spencer Harbar
 
PDF
Migrating Legacy On-Premise Applications to SharePoint Online and Windows Azure
Eric Shupps
 
PDF
Decoupled cms sunshinephp 2014
Lukas Smith
 
PPTX
SharePoint Connections Coast to Coast Developer Boot Camp Crash Course v3
Ivan Sanders
 
PDF
Service-Oriented Architecture
Samantha Geitz
 
PPTX
Deploy and Configure an Enterprise Root CA & Subordinate CA in Windows Server...
Md. Abdul Barek
 
PPTX
Office 365-single-sign-on-with-adfs
amitchachra
 
PPTX
Oracle Alta UI Patterns for Enterprise Applications and Responsive UI Support
andrejusb
 
PPTX
Session 7 - Integrating share point with silverlight firestarter
Mithun T. Dhar
 
PDF
Office 365 identity
Motty Ben Atia
 
PPTX
Back to the Basics - 1 - Introduction to Web Development
Clint LaForest
 
PPTX
Formstack
KadharBashaJ
 
It114 Configuring SharePoint 2010 User Profile Sync
Spencer Harbar
 
Migrating Legacy On-Premise Applications to SharePoint Online and Windows Azure
Eric Shupps
 
Decoupled cms sunshinephp 2014
Lukas Smith
 
SharePoint Connections Coast to Coast Developer Boot Camp Crash Course v3
Ivan Sanders
 
Service-Oriented Architecture
Samantha Geitz
 
Deploy and Configure an Enterprise Root CA & Subordinate CA in Windows Server...
Md. Abdul Barek
 
Office 365-single-sign-on-with-adfs
amitchachra
 
Oracle Alta UI Patterns for Enterprise Applications and Responsive UI Support
andrejusb
 
Session 7 - Integrating share point with silverlight firestarter
Mithun T. Dhar
 
Office 365 identity
Motty Ben Atia
 
Back to the Basics - 1 - Introduction to Web Development
Clint LaForest
 
Formstack
KadharBashaJ
 
Ad

Viewers also liked (13)

PPT
Ch 25 ppp, with breakouts
psmccully
 
PPT
Ch 1 ppp, v7 with groups
psmccully
 
PPTX
C:\fakepath\slide show oct
Ms. Malone
 
RTF
Byzantine document
hiren1234
 
PPT
Poem: Civilization and IPR (Basic concepts of IPR)
Pankaj Kumar
 
PPT
Ch 2 ppp, vol 7
psmccully
 
PPTX
Edsby aptiris 01-2014
aptiris
 
PPTX
Diapositivas
alxmaku
 
PPT
Fundations sounds
Ms. Malone
 
PPTX
Preparing for first class 12
aptiris
 
PPTX
Requirement Engineering in Agile Global Software Development
Mohammad Anggasta Paramartha
 
PPTX
ศาสนาพราหมณ์
sorrachat keawjam
 
PPTX
Design and Instantiation of Reference Architecture for Pluggable Service Plat...
Mohammad Anggasta Paramartha
 
Ch 25 ppp, with breakouts
psmccully
 
Ch 1 ppp, v7 with groups
psmccully
 
C:\fakepath\slide show oct
Ms. Malone
 
Byzantine document
hiren1234
 
Poem: Civilization and IPR (Basic concepts of IPR)
Pankaj Kumar
 
Ch 2 ppp, vol 7
psmccully
 
Edsby aptiris 01-2014
aptiris
 
Diapositivas
alxmaku
 
Fundations sounds
Ms. Malone
 
Preparing for first class 12
aptiris
 
Requirement Engineering in Agile Global Software Development
Mohammad Anggasta Paramartha
 
ศาสนาพราหมณ์
sorrachat keawjam
 
Design and Instantiation of Reference Architecture for Pluggable Service Plat...
Mohammad Anggasta Paramartha
 
Ad

Similar to FirstClass account automation (20)

PPTX
SEASPC 2011 - Collaborating with Extranet Partners on SharePoint 2010
Michael Noel
 
PPT
Win2KServer Active Directory
Phil Ashman
 
PPTX
What’s new in windows server 2012
Alex de Jong
 
PDF
Sa202 Sn
cipriano1
 
PPTX
Dynamic access control sbc12 - thuan nguyen
Thuan Ng
 
PPTX
HAD05: Collaborating with Extranet Partners on SharePoint 2010
Michael Noel
 
PDF
Windows Server 2008 Active Directory Components
Tũi Wichets
 
PDF
Windows server 2008 active directory components
Sathishkumar A
 
PPTX
Supporting architecture for office 365 spo
Jethro Seghers
 
PDF
Mcitp course details
cisco training
 
PDF
IBM Connections and Desktop Single Sign-On using Microsoft Active Directory, ...
Dave Hay
 
PPT
Active Directory Fundamentals Training.ppt
PeterBendana
 
PPT
active directory fundamental for the beginner
RivelynN
 
PPS
Comp tia a+_session_11
Niit Care
 
PDF
Session 3 - Windows Server 2012 with Jared Thibodeau
CTE Solutions Inc.
 
PPTX
How to provide AD, ADFS, DirSync in Windows Azure and hook it up with Office 365
Microsoft TechNet - Belgium and Luxembourg
 
PDF
access-control-week-3
jemtallon
 
PDF
SharePoint 2010 best practices for infrastructure deployments SharePoint Sat...
Knowledge Cue
 
PDF
SBC 2012 - Dynamic Access Control in Windows Server 2012 (Nguyễn Ngọc Thuận)
Security Bootcamp
 
PDF
DSS - ITSEC conf - Centrify - Identity Control and Access Management - Riga N...
Andris Soroka
 
SEASPC 2011 - Collaborating with Extranet Partners on SharePoint 2010
Michael Noel
 
Win2KServer Active Directory
Phil Ashman
 
What’s new in windows server 2012
Alex de Jong
 
Sa202 Sn
cipriano1
 
Dynamic access control sbc12 - thuan nguyen
Thuan Ng
 
HAD05: Collaborating with Extranet Partners on SharePoint 2010
Michael Noel
 
Windows Server 2008 Active Directory Components
Tũi Wichets
 
Windows server 2008 active directory components
Sathishkumar A
 
Supporting architecture for office 365 spo
Jethro Seghers
 
Mcitp course details
cisco training
 
IBM Connections and Desktop Single Sign-On using Microsoft Active Directory, ...
Dave Hay
 
Active Directory Fundamentals Training.ppt
PeterBendana
 
active directory fundamental for the beginner
RivelynN
 
Comp tia a+_session_11
Niit Care
 
Session 3 - Windows Server 2012 with Jared Thibodeau
CTE Solutions Inc.
 
How to provide AD, ADFS, DirSync in Windows Azure and hook it up with Office 365
Microsoft TechNet - Belgium and Luxembourg
 
access-control-week-3
jemtallon
 
SharePoint 2010 best practices for infrastructure deployments SharePoint Sat...
Knowledge Cue
 
SBC 2012 - Dynamic Access Control in Windows Server 2012 (Nguyễn Ngọc Thuận)
Security Bootcamp
 
DSS - ITSEC conf - Centrify - Identity Control and Access Management - Riga N...
Andris Soroka
 

Recently uploaded (20)

PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PDF
A comparative analysis of optical character recognition models for extracting...
IAESIJAI
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PDF
gpt5_lecture_notes_comprehensive_20250812015547.pdf
Chinchu40
 
PDF
Heart disease approach using modified random forest and particle swarm optimi...
IAESIJAI
 
PDF
Accuracy of neural networks in brain wave diagnosis of schizophrenia
IAESIJAI
 
PDF
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
PDF
A comparative study of natural language inference in Swahili using monolingua...
IAESIJAI
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PPTX
Machine Learning_overview_presentation.pptx
kondavamsidharreddy2
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PPTX
Group 1 Presentation -Planning and Decision Making .pptx
MatthewLewis227954
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PDF
Video forgery: An extensive analysis of inter-and intra-frame manipulation al...
IAESIJAI
 
PDF
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
PPTX
A Presentation on Artificial Intelligence
memembruh336
 
PPTX
OMC Textile Division Presentation 2021.pptx
JahangirAlam816069
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
A comparative analysis of optical character recognition models for extracting...
IAESIJAI
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
gpt5_lecture_notes_comprehensive_20250812015547.pdf
Chinchu40
 
Heart disease approach using modified random forest and particle swarm optimi...
IAESIJAI
 
Accuracy of neural networks in brain wave diagnosis of schizophrenia
IAESIJAI
 
Assigned Numbers - 2025 - Bluetooth® Document
Bloombase
 
A comparative study of natural language inference in Swahili using monolingua...
IAESIJAI
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
Machine Learning_overview_presentation.pptx
kondavamsidharreddy2
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
Group 1 Presentation -Planning and Decision Making .pptx
MatthewLewis227954
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Video forgery: An extensive analysis of inter-and intra-frame manipulation al...
IAESIJAI
 
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
A Presentation on Artificial Intelligence
memembruh336
 
OMC Textile Division Presentation 2021.pptx
JahangirAlam816069
 

FirstClass account automation

  • 1. FirstClass Account Automation Gary Falcon October 2, 2012
  • 2. Goals  What is possible  What components & tools to use X Step-by-step installation X Troubleshooting server-specific problems
  • 3. Where are we going? 1. Using FC directory outside FirstClass 2. External authentication 3. Account provisioning
  • 4. Topic 1 USING THE FIRSTCLASS DIRECTORY OUTSIDE FIRSTCLASS
  • 5. Approaches  LDAP: Internet Services  LDAP: Directory Services  Data files / ODBC: Application Services
  • 6. Why?  Spam filters  Web app authentication  Network copiers  PHP applications  Populate external systems
  • 7. LDAP: Internet Services [Show Config]  Basic Internet Setup  Advanced Directory  LDAP Browser
  • 8. LDAP: Directory Services [Config Highlights]  Directory Setup  Port, root DN  Show/Replicate  Replication > Filtering
  • 9. LDAP Comparison Internet Services Directory Services  Authenticate with UserID  Authenticate with LDAP DN  All directory objects  Choice of directory objects using BaseDN  Global directory only  User contacts  ClientID as UID  UserID as UID  Less configurable  More configurable  LDAP-format DN
  • 10. Data Exchange Files / ODBC  Build in FCAS  Custom built: export exactly what is required  Automate schedule  Write to text file or ODBC data source
  • 11. Which to use? 1. Internet Services LDAP: First choice 2. Directory Services LDAP: When #1 doesn’t provide necessary attributes or function 3. Application Services: When LDAP functions aren’t available
  • 13. Why?  Easier for end-users  Convenient for administrators  Low risk  High reward
  • 14. What?
  • 15. Authentication Workflow Client User ID & Password FCS FCDS yes LDAP no controlled? yes FCDS no avail? yes AD no avail? yes Valid Valid no login? login? yes no Cache data in FCS Username Log user in or PW error
  • 16. Authentication: Configuration [Config Highlights]  Operation mode: LDAP  Auth method: Remote  LDAP Server: required  Gateway: filtering  Change password: off
  • 17. Challenges  Requires SSL for web logins  Most recent FCDS may not allow saved passwords
  • 19. FCDS Provisioning  Works with AD, OpenLDAP  With or without authentication  Account adds / removes / changes  Creates groups from OUs  Matches to sAMAccount Name (AD) or DN (LDAP)  One-way replication
  • 20. Provisioning: Configuration [Config Highlights]  Operation mode: LDAP or Replication  Enable delete: OFF  Set schedule  Test in non-production environment
  • 21. Challenges  OU structure vs/ FirstClass groups  AD Groups are not replicated  Will delete your directory if you tell it to
  • 22. Custom Provisioning  Data can be brought in from any system  Handles account adds / removes / changes  Flexible handling of group associations  Custom apps can follow any required logic  Provisioning only; no authentication
  • 23. Getting Help  Limited support from FirstClass  Aptiris can assist with:  Support (for Aptiris clients)  Implementation services  Ad-hoc consultation  info@aptiris.com / 877.864.3534
  • 25. Thank you! Gary Falcon gfalcon@aptiris.com

Editor's Notes

  • #24: 3 items that FirstClass requires professional services for:Platform MigrationVoice ServicesDirectory Services