|
|
Metadirectory Technical Status Meeting
https://fsuid.fsu.edu/admin
11/16/2004
- Project
Status
- Have a “What is YOUR FSUID?” table at
Thursday’s Staff Showcase.
- Added ability to put a “departmental” LDAP
filter in front of the Helpdesk utility.
Now any FSUID can be given “control” over their departmental
identities. Propose using the
standard “DSC” model to allow permissions to this utility by anybody.
- Added new attribute: “fsuEduLibraryNumber”, to
be populated soon. Wondering
about populating fsuEduCarsRetireDate…
- Continuing to provide CARS user functions in
FSUID –Working on a “CARS API” via an SSH tunnel and Oracle PL/SQL calls
for CARS account management (Breeze is writing the PL/SQL calls)
- Next Big Event for FSUIDs: “go live” of
PeopleSoft HR in mid-December.
Will need to make sure an HR extract from PS is available as it is
today from HRMS to continue to feed the eDir with employee identities. Getting
access to current HR EPM tables to start looking at how to get this
information for FSUIDs.
- Noticed that replicants weren’t getting master
updates (user “pburns” unable to authenticate from sprded01 or
sprded02). Ended up removing all
R/W replicants and then re-adding them, one at a time. Also upgraded eDir software to
8.7.3.3. The replication
timestamps are now as “clean” as ever.
Issued new digital certs for those applications that need them
(NOTE: latest certs can now always be found at https://fsuid.fsu.edu/admin/certs). All five servers are now back on-line
(mdsoti, udbprod, radius1, sprded01 & sprded02).
- Discuss: Helpdesk option to manage the visitor/legit
FSUID rename problem (avoid Claire from having to do the digital pretzel
maneuver). Delete? Rename to userkey?
- Still monitoring memory usage of “ndsd”
daemons; have a PO being cut to report the memory leak officially to
Novell to get it fixed (have some core files to give them).
- Installing more of the per-server LDAP indices
to speed up R/W replicant performance.
Installed iManager directly on mdsoti (https://mdsoti.fsu.edu:10443/nps/iManager.html).
- Installed automatic LDAP failover code in
mdsoti’s various Perl scripts.
Now all three major FSUID applications have working failover
capability: PeopleSoft production portal, FSUID, and Secure Login!
- DIRXML news update; populating fsuEduVPNList
with “UCS_DIALUP” or “OTC_DIALUP” for Breeze’s dialup project
- Note email/event archive at http://fsuid.fsu.edu/admin/project-history/.
- Action
Items
- [IS,
ODDL] Connect C.A.S. to Secure Login, Blackboard & FSUID, all
pointing to eDir. Waiting for FSUID piece to be
completed, then will bring CAS-enabled Secure Login, Blackboard and FSUID
on-line.
- Add code to log major FSUID events (renames,
etc.) into new UDB table (FSHTDG.FSUID_CHG_TRACKING)
- [IS]
Provide an option for departmental creation of visitor accounts and AD
Exchange accounts with appropriate associations (College of Medicine).
- [IS] Write web-based
documentation explaining how to use eDir for authentication (pure LDAP,
UNIX passwd file, RADIUS, Apache auth_ldap, etc.).
- [Group – longer term] Continue
working SSN à FSNSN replacement discussions with campus. Pushing in IS out to customers to
start using FSUSN which is now populated in USER_ACCOUNT. Secure
Login beginning to use FSUSN in place of SSN.
- Work with ERP/Bryan Spaulding on BusObj
FSUID/group A&A.
|
