Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 638
  • Last Modified:

Edirectory and AD integration

Hi all,

My company uses iChain as a reverse proxy for authenticating remote users to some intranet websites. All user accounts are created on eDirectory and managed by ConsoleOne. Anyway, here is the question :

We need to integrate eDirectory and AD somehow to manage these users. I managed to find out a tool called DirXML from Novell. But it's not a standalone tool any more and it's sold with IDM 3.0 which is used as a SSO-tool. So i believe it's a not a cost-effective solution right now. We are simply looking for a connector tool btw. eDirectory and AD.

Do you have any other idea ?

By the way, old releases of DirXML can be found on Novell's web page, but unfortunatelly we are using eDirectory 8.8 which is not compatible with the older releases of DirXML. Also we do not have NetWare, eDirectory is running on W2K3 server.

Thanks..
0
hodiday
Asked:
hodiday
  • 3
2 Solutions
 
PsiCopCommented:
IDM is NOT an SSO tool! Whoever is telling you that is mis-informed.

IDM is *exactly* what you need. It will provide integration between eDirectory and AD. SSO is a side-benefit, but hardly the sole or even major purpose of IDM.

The primary focus of IDM is to provide a single point of identity management in a heterogeneous environment, and to do so for a wide variety of platforms and authentication systems. Got Linux? A UNIX (like Solaris)? OS/400 or OS/390? IDM can tie those together too.
0
 
ShineOnCommented:
The Novell SSO tool is called Novell Secure Login.  

It used to be called Single SignOn, and that's what it does.  If SSO is what you're aiming at, you might want to take a look at it: http://www.novell.com/products/securelogin/enable.html
0
 
ShineOnCommented:
To expand, the identity-management and security toolset Novell provides, all based on eDirectory, include full-bore cross-platform identity management (which is way WAY more than just "single sign-on"), secure single sign-on with multitiered authentication methods, iChain, Auditing products, and more.

You're a lot further than a lot of folx by using iChain, but check out  the  Novell website and click the "identity and security" link where the rest  of the family iChain belongs to are showcased to see what might fit your needs best.  They really do have a broad offering in the security and identity space.
0
 
dotENGCommented:
0
 
ShineOnCommented:
But they don't have OES, they're running eDir 8.8 on W2K3, with iChain.

To  hodiday:   DirXML is not "part of" Identity Manager, that's what it became as it "grew up."

The old DirXML was renamed Identity Manager 'cause it fits the function better.  It still uses XML as a metadirectory remapping tool, to connect various identity databases to eDirectory, but it does more, better, and has better tools for creating a multiplatform, multidirectory metadirectory system.

The last DirXML under that name was, I think, version 1.1.  It was  renamed Novell Identity Manager for version 2.0, and it's now at version 3.0 - and it's still a "stand-alone" product, and again, it's not for "single sign on" - it's for managing user identities in a heterogeneous environment.  The closest thing in Identity Manager to "single sign on" is its ability to synchronize strong passwords across multiple authentication domains.

If you haven't read up on it yet, here's a link: http://www.novell.com/products/identitymanager/index.html
0

Featured Post

[Webinar] Database Backup and Recovery

Does your company store data on premises, off site, in the cloud, or a combination of these? If you answered “yes”, you need a data backup recovery plan that fits each and every platform. Watch now as as Percona teaches us how to build agile data backup recovery plan.

  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now