K12 Identity Based Storage Management - PowerPoint PPT Presentation

About This Presentation

Title:

K12 Identity Based Storage Management

Description:

K12 Identity Based Storage Management Identity Based Collaborative Learning Solution Agenda Introduction to Condrey Consulting Corporation Identity Based Storage ... – PowerPoint PPT presentation

Number of Views:265

Avg rating:3.0/5.0

Slides: 76

Provided by: des496

Category:

more less

Transcript and Presenter's Notes

Title: K12 Identity Based Storage Management

1
K12 Identity Based Storage Management

Identity Based Collaborative Learning Solution

2
Agenda

Introduction to Condrey Consulting Corporation
Identity Based Storage Management
Provision Create, Manage Clean Up
Access Web Based Access Management
Audit - Who is Accessing Servers and Storage
Secure What Rights do they have to storage
Components of Identity Based Collaborative
Learning Solution
Live Demo
QA

3
Condrey Consulting CorporationCompany Overview

David Condrey Owner and CEO
US Software Engineering Corporation based in
Greenville, SC
Customers in 33 countries representing
Commercial, Fortune 1000, State Federal
Government, Military, Healthcare, Higher-Ed and
K12
Well known and respected by customers, especially
in the academic market
Well known at Novell Model Partner
Invested in the future of Novell

4
Condrey Consulting Products Overview

File System Factory Novell Nsure - Novell
Price List - SLA
Provision, Manage, Cleanup
Identity Based Storage Management
Lifecycle Content and Data Management
(ePortfolio)
IUAdmin - Web Based Access and Management
Policy Based Personal and Collaborative Storage
Access
Web Based Access to Personal and Group Content
Web Based Help Desk Administration
Web Based User Self-Service and Password Reset
AuditLogin and TrustFun
Whos Accessing Storage and What Rights Do They
Have?
Login/Logout - Date, Time,Workstation
Trend Reports and Graphs
File and Directory Rights Analysis

5
File System Factory Education Customers

University of Kentucky 43,000 users
Northern Illinois University 67,000 users
Minnesota State Colleges and Universities
93,000 users
Charleston County Schools, SC 42,000 users
University of Georgia 60,000 users
Embry Riddle University 12,000 users
Hemet School District, Los Angeles
Grand Rapids Community College
Savannah Chatham County Schools, Georgia
Douglas County Schools, Georgia
Newton County Schools, Georgia

6
More File System Education Customers

Escondido Union High School District
Sutton Public Schools
Ramaz School
Augsburg College
Southwestern Community District No. 9
Le Moyne College
Macon County R-1
Grant MacEwan College
Clemson University
Community Consolidated School
District Illinois
Ramaz School
Augsburg College

Northwestern Michigan University
Old Dominion University
Madison Area Technical College
Waukesha County Technical College
Blackhawk PA School District
Marysville Village Schools
Spearfish School District
Maine Township High School District
Waubonsee Community College
Western Illinois Univeristy
Escondido Union High School District
Sutton Public Schools

7
Sample of Education Customers Leveraging
File System Factory, IUAdmin and AuditLogin
8
Digital Portfolios

The Digital Portfolio" is a strategy that has
gained wide-spread acceptance in the education
field
Digital portfolios make it easier to track a
student's progress and work over the years.
Allows students to store their material in
digital format on a server to be reviewed by team
members.
The portfolio contains samples of significant
student work over time and should be available to
the student throughout their school career,
making it easier for teachers to access student
work and thus track performance.
Digital portfolios are useful when applying to
post-high school institutions or moving into
careers in the private sector.
Digital Identity is key

9
NCLB and ePortfolio Links

http//www.kn.pacbell.com/news/CAschools/sas.html
http//www.southalabama.edu/tomorrowsteachers/port
folios.html
http//schools.nycenet.edu/d75/instructionalservic
es/assessment/altassessment/datafolio.html
http//www.pupilpages.com/
http//www.mandia.com/kelly/portfolio.htm

10
Components of K12 Identity Based Collaborative
Learning Solution
11
Components of K12 Identity BasedStorage
Management Solution

Novell eDirectory Foundation
Novell File System Factory
Identity Based Personal and Collaborative Storage
Lifecycle Content and Data Management
(ePortfolio)
Creation, Migration and Graduation Policies
IUAdmin
Web based access to personal and collaborative
content
User Self-Service and Help Desk
Self Service Password Reset
Contextless Login Access
AuditLogin and TrustFun
Whos logging in and accessing data
What rights do they have?

12
Digital Identities The key to student and faculty
collaboration
13
Novell eDirectory

Stores information about people,
services, and resources
Manages relationships between them
Directs interactions and triggers
events

14
Provision, Manage, Clean Up

Novell File System Factory
15
Novell File System Factory The Challenge

Do you give all your users home directories?
If you do, how do you manage the disk space?
Do you evenly distribute the disk space?
Criteria?
How do you manage growth?
If you do give your users home directories, how
do you clean them up? How extensible is it?
Do you give ALL your groups of users
collaborative storage space?
Faculty and Administrators All working groups?
Students All sections of all classes?
Do you evenly distribute the disk space?
How do you manage growth? Cleanup?

16
Creating and ManagingeDirectory Users and Groups
Datafile
Datafile
LDIF
App
17
A New Philosophy
Point your tree
at your disk
and be done with it.
18
Novell File System Factory
Automatic Disk Space for all Students
and Staff!
19
Novell File System Factory
Automatic Disk Space for each Class and
Work Group!
20
Novell File System Factory
Automated Home Directory Management Create
It, Manage It, and most importantly Clean It Up!
21
Novell File System Factory
Lifecycle Data and ePortfolio Management Create
It Move It Manage It
22
Novell File System Factory
All you have to do is create the users and
groups Any way you want Well handle the
rest!
23
Provision Storage as well as Accounts with Novell
File System Factory and Identity Management
Identity Mgr
SIF
Driver
Driver

Policy-based
Event-driven
Load balancing

Storage creation
Storage management
Storage cleanup
Personal user storage
Group storage

High School 25MB
Middle School 10MB
24
FSF Methodology
New workflow component allows employees manager
to review, reassign, or vault user data prior to
deletion.
Algorithm Random Balance Rights RWCEMFA Quota
150 MB Template SERV1/VOL1Policies DelWait 90
Days
Target File Systems
Policy

Create

Rename

BJones
BSmith

Delete

RWCEMFA
Copy
BSmith
BJones
150MB
SERV1/VOL1POLICIES
25
Policy Assignment Data Migration

Seamless
Fault-tolerant
Safe

BSmith
BSmith
Scheduler 900PM
BSmith 50MB
BSmith 25MB
26
Education Group Policy Example
Algorithm Random Balance Rights none Quota 500
MB Template SERV1/VOL1GroupSample DelWait Never
Assign Policy to Courses Container
Target File Systems
Policy
Create Course Group Object
SPAN340-001
Automatically Create Group Storage and Assign
Policies
SPAN340-001
Copy Course Files for Each Student from Template
Copy
150MB
SERV1/VOL1GroupSample
27
Group Policy TemplatesConfiguration Steps
Create Group Object
SPAN340-001.MS.COURSES.STATEU
Create FSF Group Policy Using the FSF Management
Interface
Create eDir Objects
Assign Members Owners to the Group
Create Template
Assign Rights to Directories
28
Group Policy Templates
Assign Students as Members and Instructors as
Owners
Members
Owners
JSmith.Students.STATEU MRoberts.Students.STATEU NF
rost.Students.STATEU PJones.Students.STATEU RBrook
s.Students.STATEU SSmith.Students.STATEU STimms.St
udents.STATEU TJones.Students.STATEU TSmythe.Stude
nts.STATEU WClark.Students.STATEU
ABelcher.Staff.STATEU KAlesanto.Staff.STATEU
29
Group Policy Templates
File System Factory Automatically Provisions
Storage for Students and Instructors
30
Backfill - Apply or Reapply Policy to Existing
Objects On Demand
BSmith
RCroom
DWyatt
BSmith

Provision storage for pre-existing users
according to policy.
Begin managing pre-existing storage according
to policy.

RJones
KJackson
RCroom
DWyatt
31
Northern Illinois UniversityData Migration -
Backfill
BSmith
RJones
KJackson
RCroom
Pentium Pro 200s 0 Users
Pentium Pro 200s 67,672 Users
DWyatt
32
Wheres my stuff?

Users need an easy way to find their storage
even if you need to move it.
Personal Storage and Group Storage.
Map a Drive? Theres only so many letters in the
alphabet.
Login Script Management is a headache for group
storage.

33
URAccess

End-User tool for dynamically building
personalized access links to storage.
Leverages Home_Directory user attribute for
personal storage.
Leverages cccFSFactoryHomedir group attribute for
shared storage.
Creates a local set of UNC paths and description
presented to the user in a Windows UI.
Like App-Launcher for ZENworks, except provides
access to storage.
List can be refreshed at any time.
Supports multiple tree connections.

34
URAccess
35
Executive and Admin Dashboards

36
Executive Storage Dashboard
Storage Trends on User and Group Policies
37
Administrative Storage Dashboard
Event Statistics
Storage Health Check
https//your.server.name.or.ip.address8009/FSF/HT
TP_FSFExecutiveDashboard.
38
Web Based Quota Manager

39
Web Based Quota Manager Policy Configuration
40
Quota Manager Help Desk Interface
https//your.server.name.or.ip.address8009/FSF/HT
TP_FSFQuotaMgr
41
Quota Manager Help Desk Interface
42
Quota Manager Help Desk Interface
43
Web Based File Rights Analysis

44
File System Rights Analysis
45
Rights Analysis
OWNERS
MEMBERS
46
Employee Data Manager - Workflow

47
Novell eGuide Manager
48
Workflow Configuration
49
Employee Data Manager Interface
50
What are the requirements?
Any Novell supported version of NDS or
eDirectory (6.xx, 7.xx, 8.xx, 85.xx, 8.6.x,
8.7.x)
NetWare 5.1 SP6 or later NetWare 6.0 SP4 or
later NetWare 6.5 or later
NetWare 6.0 SP4 or later NetWare 6.5 or later
NetWare 4.x SP9 or later NetWare 5.0 SP6a or
later NetWare 5.1 SP6 or later NetWare 6.0 SP4 or
later NetWare 6.5 or later
51
Coming up Next
File System Factory for
Microsoft Active Directory Linux
52
Provision and De-Provision Storage for Netware,
Active Directory and Linux Based on Policy
Identity Mgr
Driver
Driver
LINUX
FSF
53
Web Based Access and Management

Internet User Administrator IUAdmin
54
IUAdmin

Web Based Access to Netware Personal Storage and
ePortfolio
Managed by File System Factory Policies
Web Based Access to Collaborative Group Storage
Managed by
File System Factory Policies
Integrate with Novell Extend Portal, Netware 6.5
Virtual
Office Portal and Novell iChain
User Self Service
Self-Service Password Reset
Let Users Optionally fix their own problems
Help Desk Administration
Location and Departmental based Help Desk
Help Desk Group Management
User Help Indicators Identify Account Problems

Intruder Lockout
Grace Logins
Login Disabled
Account Expired
55
IUAdmin
Personal Storage
Group Storage
ePortfolio
56
Help Desk Dashboard
57
IUAdmin Architecture

Built on top of Novells HTTPSTK..no webserver to
install or configure.
Contextless Login
SSL connections for security.
No schema extensions. However
optional extensions are provided
for increased functionality.
Runs on Netware 5.1 or above with
any version of eDirectory.

Help Desk
User Self Service
File System Access
File System Mgt
IUAdmin Core Architecture
File System Factory
Resource Mgt

Other products provide Management Paks that plug
in to the architecture.
AuditLogin Trustfun
ePortfolio
58
Self Service Password Reset
59
No More Floppy Drive Headaches

Viruss
Limited Space
Drive Failures
Management
Nightmare

Solution
File System Factory
60
Old Dominion University

"IUAdmin is an essential part of our network and
user-management toolset. The product's ability to
provide ODU students, faculty and staff with easy
and reliable remote file access from any
operating system via Web browser is a huge time
saver, and it reduces our help desk support."
Ken SaalSenior Systems EngineerOld Dominion
University

61
IUAdmin Internet User Admin

Web based access to Netware file system
controlled by file system trustee assignments
File access from any web browser on any Operating
system
One NLM on one server provides this service for
67,000 Users
Drives mapped to match work environment using
Novell client
Contextless Login
Faculty/Staff/Students use IUAdmin for remote
file access
Popular for file access from home and on mobile
wireless laptops (no novell client) in academic
buildings
ODU IUAdmin Success Story
http//developer.novell.com/success/condreycons
ulting2.html

62
Security - Audit Access Rights Analysis

AuditLoginTrustFun
63
AuditLogin - Log File Report
64
AuditLogin Graph
65
TrustFun - Rights and Trustee AnalysisWin32
Application
66
TrustFun Report
67
Trustee Assignment Detail
68
Identity Based Collaborative Learning

Solution Overview
Lifecycle Data Management
Web Based Access for Teachers, Students and
Administrators
Student ePortfolio - Cradle to Job
User Self Service and Web Based Help Desk
Login Auditing and Rights Analysis
Minimum Solution Requirements
Novell File System Factory
IUAdmin, AuditLogin, TrustFun

69
Identity Based Collaborative Learning
GroupWise
File System Factory
NetMail
Faculty Students

Product Licenses
Novell SLA
File System Factory
Condrey Consulting
IUAdmin
AuditLogin, TrustFun

Novell BorderManager

Policy Based Storage
Home Directory
Virtual Classroom Storage
Team Storage
Student ePortfolio
Lifecylcle Management

File System Access Help Desk Self
Service Password Reset
IUAdmin
Storage Access Reports Graphs
AuditLogin
70
Grade Promotion Policy
Production Tree
Novell BorderManager
IUAdmin
HS1
MS1
Student Locker
Grade Promotion
Home Directory
ePortfolio Class Storage
71
Graduation Policy
Production Tree
SCSD
DIST
Graduated
HS1
Novell BorderManager
IUAdmin
SMS
STUDENTS
Graduation
Student Locker
IUAdmin
ePortfolio
72
Solution Benefits

Students
Personalized Student Content
Lifecycle Data Management
Web Based Access to resources and lesson
assignments
Self Password Reset

IT Departments
Reduced help desk support costs
Reduced time needed to manage personal and group
storage
Leverage existing systems and infrastructure No
upgrades

Teachers
Web based access to resources and data
Team Collaboration with students and teachers
Teacher ePortfolio
Self User Self Service

Administrators
Team Collaboration
Minimal cost with large return
Web based access to resources and data
User Self Service

73
Novell Nsure Case Study Charleston County
School District
Approach
Customer Situation
Business Results

42,000 students 6000 faculty and staff
Constant student turnover
Identities duplicated in multiple applications
Needed to reduce cost and time associated with
student account management.
Life-Cycle student and collaborative file system
management
Based on SIF Standards

Discovery and Requirements Assessment
Establish an authoritative source for identity
information
Create a directory-based provisioning framework
Implement Identity Based Storage Management

Automated Provisioning for Student Identities
Life-Cycle student and collaborative storage
Secure Access Portal for faculty.
Personalized delivery of information to faculty.

74
Solution Example
Description Cost Maint Totals
File System Factory 5000 Students (SLA) 2,500.00 0.00 2,500.00
IUAdmin 900 Faculty and 12th Grade Students 700.00 140.00 840.00
AuditLogin Site District License 1,000.00 350.00 1,350.00
TrustFun Site District License 400.00 125.00 525.00
Software Cost 5,215.00
Hardware Cost 0.00
Total Software and Hardware Cost 5,215.00

Students in District 5000 FTE for File
System Factory
Faculty in District 500 Students in 12th
Grade 400 FTE for IUAdmin 900
Hardware costs depends on the clients current
environment
Recommend one server for IUAdmin Resource Portal
75
Current IUAdmin Educational PricingFlexible
Pricing Based on District Needs
IUADMIN Government/Educational Pricing IUADMIN Government/Educational Pricing IUADMIN Government/Educational Pricing IUADMIN Government/Educational Pricing IUADMIN Government/Educational Pricing
New License Maintenance Maintenance
User Count SKU Price SKU Price
1000 IAV101KEDU 700 IAMT01KEDU 140
2000 IAV102KEDU 1,000 IAMT02KEDU 200
4000 IAV104KEDU 1,600 IAMT04KEDU 320
8000 IAV108KEDU 2,400 IAMT08KEDU 480
16000 IAV116KEDU 3,200 IAMT16KEDU 640
32000 IAV132KEDU 4,800 IAMT32KEDU 960
Unlimited IAV1UNLEDU 6,400 IAMTUNLEDU 1,280
76
Current AuditLogin Educational Pricing
Government and Education Pricing Government and Education Pricing Government and Education Pricing
AuditLogin AuditLogin AuditLogin
Description SKU Price
Gov/Education New Licenses
V3 Single Server ALV3NSSEDU 100
V3 Three Server Pack (save 25) ALV3N3PEDU 225
V3 Site License ALV3NSTEDU 1,000
Gov/Education Maintenance
V3 Yearly Upgrade Protection and Maintenance Option ALMAINTEDU 350
Gov/Education Upgrade from Version 2
V3 Three Server Pack Upgrade ALV3USSEDU 50
V3 Site License Upgrade ALV3USTEDU 500
77

DEMO

File System Factory
Create Policy Students and Faculty
Promotion and Move Policy
Graduation and Termination Policy
Course and Group Policies Business Ed Example
URAccess Access to Group Storage No Drive
Mappings
IUAdmin
Web based access to files for Students and
Faculty
Provision Student and Faculty Web Pages
Contextless Login
Self Service Password Management
Help Desk
AuditLogin and TrustFun
Login Auditing and Rights Analysis

79
Technical Overview

File System Factory
80
Global Event Subsystemand Transaction Tracking
FSF_Event
FSF_Event
FSF_Event
Event DB
FSF_Engine
81
The State Machine Architecture
Neither rain, nor snow, nor sleet, nor gloom of
delayed DS synchronization shall stay this system
from the swift (or eventual) completion of its
appointed tasks