RMLL 2010 schedule

Wednesday 7th July 2010

  • LemonLDAP ::NG et la fédération d’identités : retours sur l’intégration de SAML2 et OpenID

    by Clément OUDOT

    LemonLDAP ::NG est un produit de WebSSO constitué de modules Perl couplés à Apache. D’origine lié à un annuaire LDAP, il supporte désormais de nombreux modes d’authentification comme SSL, Kerberos, Base de données, CAS, Liberty Alliance et récemment OpenID et SAML2. L’intégration de SAML2 fait désormais de LemonLDAP ::NG un produit de fédération d’identités à part entière, à la fois en tant que fournisseur de service mais surtout en tant que fournisseur d’identités.

    At 2:20pm to 3:00pm, Wednesday 7th July

    Coverage slide deck

Friday 9th July 2010

  • LSC: Ldap Synchronization Connector

    by Jonathan Clarke

    Today’s identity management solutions generally rely on using a central LDAP directory as their main identity repository. This is where all information relating to any employee should be available.

    However, in enterprise environments, this identity information either originates from, or is needed in, a variety of different repositories. A few examples include the human resources software that stores employees’ information in a database, Microsoft’s Active Directory solution for desktop computer management which needs users’ identities, or that old directory which just won’t replicate with any newer solution.

    So, how do you keep information in all these different identity repositories in sync with each other? Manually copying and pasting information is obviously not a viable solution for any more that a few hundred users.

    The LDAP Synchronization Connector (LSC) project is an Open Source tool to address this problem. Relying on standard protocols, it can address any SQL database and any LDAPv3 directory, as well as read from flat files, in order to set up continuous synchronization between different repositories. A very powerful mapping mechanism allows fine-tuning of which data goes where, including default values, external lookups and directory-specific tools, such as password hashing and account status management.

    Published under the BSD license, LSC was created 5 years ago. Since the creation of the public website, http://lsc-project.org, two years ago, about 10 regular contributors have been working to improve the tool.

    This talk will introduce the need and frequent use-cases for such a tool, present the tool and surrounding project and detail some specific examples for use, including a live demo.

    At 9:20am to 10:00am, Friday 9th July

    Coverage slide deck