| fsu torches | | florida state university |
  FSUID Home > Project Documentation > History > Technical Meetings > Outline | Home | Search | Help | Contact || Home || Search || Help || Contact |

 



References
LDAP/eDir Documents
LDAP
Windows AD LDAP Schema
 
 
Metadirectory Technical Status Meeting
https://fsuid.fsu.edu/admin
7/20/2004

  • Project Status
    • Working two serious LDAP issues (3 hour power outage & referrals; “sprded01” mysterious LDAP failures) – must move “non-essential” LDAP work off of “sprded01”, keep all production servers up & keep network “lines open”.
    • Removed FSUID from public search; whipped up new http://fsuid.fsu.edu/lookup password-protected web page for “read only” access to entire metadirectory.
    • Added “fsuEduHrmsEmail” attribute; being fed from daily HRMS extract; considering adding a special “Email Accounts” page on fsuid.fsu.edu to explain to folks why they have so many email addresses, how to manage “.forward”; let them pick a “preferred email” address from one of the possible “official FSU” ones?
    • Met with UCS wireless folks about possible FSUID authentication with BlueSocket boxes; will need more granular student data in eDir, though.
    • Completed action items from last update:Set up “Associate Outlook” in FSUID helpdesk page; put more attribute documentation on the “admin” page (see WIP at http://fsuid.fsu.edu/admin/new_index.html); fixed network connection to sdeved01 (will connect it to “mdsdev”); switching AD LDAP to new Windows 2003 server
  • Action Items
    1. [IS, US] Populate Novell account information into eDir (need Novell proxy admin account)
    2. [All] Discuss FSUID renaming policy.
    3. [IS] Set up “Outlook account enabler” web page and have OTI create new FSU AD accounts disabled by default (this will force Outlook ßà FSUID associations)  (have new Helpdesk option for now)
    4. [IS] Set up “fsuEduPowerRoles” attribute and modify the various “power user” web sites to use this attribute for web page authentication (helpdesk, erpvpn, busobj, lookup, etc.)
    5. [IS] Write web-based documentation explaining how to use eDir for authentication (pure LDAP, UNIX passwd file, RADIUS, filtering with attributes, etc.)
    6. [UCS, IS] Disable the ability for people to change their passwords using the “native” interface for CARS, Secure Login and Active Directory (long term).
    7. [IS, Ethan] Move Oracle tables from ODDL machine (“larissa4”) to an OTI Oracle instance (On hold; data is fine where it is);
    8. [IS] Build FSUID web page for ERP “visitor” accounts.  Use “vis-loginname” convention for FSUIDs (setting up a meeting soon; this is a large issue requiring multi-customer buy-in – meeting this Thursday, 9:30, TBA)
    9. [IS] Continue researching/tweaking eDirectory performance options.
    10. [IS] Continue converting “raw” web pages into cleaner interfaces; continue to fix user accessibility features in http://fsuid.fsu.edu.  Re-design CARS pages to match look & feel of FSUID pages.
    11. [IS, ODDL] – Connect C.A.S. to Secure Login, Blackboard & FSUID, all pointing to eDir.
    12.  [IS – longer term] Actually get DirXML connections configured and going for ldap1, ldap2, etc. (still having too much fun with Perl)
    13. [IS, Ethan] Build the FSU AD shim/remote loader/password sync install (when OTI WSG deems it “safe”).  Populate appropriate user fields/re-arrange the OUs within AD using the information in the eDir.
    14. [Chuck, other ERP HR functional people] Work PeopleSoft HR ßà eDir specs.
    15. [Group – longer term] Continue working SSN à FSNSN replacement discussions with campus & design “FSUSN” algorithm (new SSN-like private attribute) – (IS has an initial level of effort – almost 10,000 hours!)
| florida state university |