Solved

Solution with Active Directlry and web servers ?

Posted on 2014-03-18
3
229 Views
Last Modified: 2014-03-23
Hi ,
I have a user who is trying to implement the following

We are looking to implement a whole new solution for  students They have 7,200 students that they would enable them to create their own websites and storage objects on.  They have looked into cPanel to accomplish this, the one issue they have run into is identity management.  They would like to connect in via LDAP or AD or something so that the student may use their username and password to access the environment.
>  
> We would be working through a partner of ours to accomplish this, so we can utilize 3rd party solutions to help.  Any ideas on customers doing something similar OR a solution to their concept?




I was thinking to bring up an AD with couple of domain controllers and create the user objects. Then maybe through a cpanel or someother control panel software to give Students access to their web pages or web conf. files.
I was also looking at Joomla as an alternative of cpanel but i have never used the product.

Any ideas would be appreciated.
0
Comment
Question by:c_hockland
3 Comments
 
LVL 26

Expert Comment

by:Leon Fester
ID: 39939114
Since you're an educational institution you can benefit from reduced pricing from Microsoft.
Then get yourself a copy of SharePoint, it's the easiest option for AD integration with personal space for user designed sites.
0
 
LVL 34

Accepted Solution

by:
gr8gonzo earned 500 total points
ID: 39939570
If SharePoint doesn't fit the bill for some reason, you can always rely on SAML authentication to open up the possibilities. Active Directory Federation Services (ADFS) will allow you to set up integrations to other sites and products - it will take care of all the authentication steps (password checking, etc) and send the student over to the site / product along with a special "get in free" ticket called a SAML assertion.

Any 3rd party product that accepts SAML single-sign-on will be capable of taking this assertion / ticket and logging the student into that product automatically, so it's the ideal way to integrate different systems together while keeping all of the actual authentication management within Active Directory.

If you have a product that doesn't support SAML yet, but does everything else, you might be able to customize it to accept SAML. There are several open-source components that can add SAML to an existing product (like simpleSamlPHP).
0
 
LVL 38

Expert Comment

by:Aaron Tomosky
ID: 39939844
Ldap to AD is easy and works great. I have it working with apache sites, java tomcat sites and other applications.
0

Featured Post

Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

Join & Write a Comment

Author Note: Since this E-E article was originally written, years ago, formal testing has come into common use in the world of PHP.  PHPUnit (http://en.wikipedia.org/wiki/PHPUnit) and similar technologies have enjoyed wide adoption, making it possib…
Get to know the ins and outs of building a web-based ERP system for your enterprise. Development timeline, technology, and costs outlined.
This tutorial walks through the best practices in adding a local business to Google Maps including how to properly search for duplicates, marker placement, and inputing business details. Login to your Google Account, then search for "Google Mapmaker…
The viewer will learn how to dynamically set the form action using jQuery.

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now