| fsu torches | | florida state university |
  FSUID Home > Project Documentation > History > Technical Meetings > Outline | Home | Search | Help | Contact || Home || Search || Help || Contact |

 



References
LDAP/eDir Documents
LDAP
Windows AD LDAP Schema
 
 
Metadirectory Technical Status Meeting
https://fsuid.fsu.edu/admin
3/1/2005

  • Project Status
    • Another replication problem cropped up that caused us to remove and re-add all R/W replicants (udbprod, sprded01, sprded02 & radius1).  Also upgraded eDir S/W to 8.7.3.4.  Have opened incident with Novell regarding core dumps.
    • Modified CHS script to use better formatted “fsuEdu” parts of names.
    • Added new eDir attributes as needed by various projects (see http://fsuid.fsu.edu/admin/project-history/02-25-2005.1.html for details).  Need to change the FSUID public and helpdesk search to use the new “fsuEdu” parts of names, including “fsuEduNickName”.
    • Met with UCS TEC staff (http://tecs.fsu.edu/) and discussed starting a project to help manage their Win AD Domain Controller and classroom logins via FSUIDs.
    • Held the second “Bb as Portal” meeting; showed off some encouraging progress towards moving the FSUID pages natively into Blackboard and a plan for migrating Secure Login web applications under Blackboard.
    • Met with User Services Windows System group to discuss how to structure the OUs and account management.  Considering running Perl scripts directly on a DC, which will allow us to use CPAN’s Win32::Exchange and other neato Windows Perl modules for management of Windows attributes that aren’t easy to get to via LDAP.
    • Will demo and discuss further management of BlueSocket devices with FSUIDs.
  • Action Items
    1. Set up public search on “directory.fsu.edu” using filtered active students/employees.  Have decided not to use eDir “filtered R/W replication”.
    2. Set up “account disable-izer” script to clean up Windows AD accounts on a per-domain basis (former students, employees, etc.).
    3. Set up an “account disable-izer” script for former employees (compare daily PeopleSoft HR extracts).
    4. Work with UCS TEC and User Services Windows System Group to set up automation of account management within their respective AD domains.
    5. Get LDAP authentication working under AIX 5.2 (either natively using secldapclntd or using open source packages) – Sean Patronis has this as an action item now.
    6. Continuing to provide CARS user functions in FSUID –Waiting on a “CARS API” via an SSH tunnel and Oracle PL/SQL calls for CARS account management.
    7.  [Group – longer term] Continue working SSN à FSUSN replacement discussions with campus.  Pushing in IS out to customers to start using FSUSN which is now populated in USER_ACCOUNT.  Secure Login beginning to use FSUSN in place of SSN.  FSUID now offers FSUCard/FSUSN as a possible authentication method.
| florida state university |