Identity management
Tue, 2008-04-08 17:03 — crispino
At Tulane University we are at the begining stages of Banner & Luminis implmentation. We have a traning and sandbox instance of Banner installed, but have not yet installed Luminis.
In addition, the univeristy is interested in a Identity management system to be used for students , staff and faculty. It would have to interface with Banner, and our Human Resorces system.
Can this be done with Luminis, or would we need some 3rd party software? Has anybody done this, and if so, what software are you using?
So far, we've seen one sales demo, for CA's Indentity Manager. Unfortuntatly, the sales rep was not very knowledgable about how they could integrate with Banner.
Hack Your Knowledge
Recent blog posts
- Adding a Tab - disable this feature
- Cleaning entered username at login
- Cross platform migration
- Banner SSB Channels
- Alternative for inline frame channels?
- Luminis channel errors
- Facebook Channel - Non-Portlet
- AppServer Installation Errors
- Luminis 3.3 to 4 Migration properties questions/thoughts...
- Proxy Settings on Luminis
Developer Links
Poll
What version of Luminis are you on (Production)?
Luminis III.3.3.x
50%
Luminis 4.0.x
24%
Luminis 4.1.0.x
20%
Luminis 4.x
5%
Luminis 5+
0%
NONE : We ditched Luminis for static HTML! (it was more functional and doesn't crash)
1%
Total votes: 104
Syndicate
Novell Identity Manager
At IPFW, we are using Novell Identity Manager as our core identity management solution. This is largely because we are already a Novell shop, including eDirectory which is a key component of their Identity Manager solution. We have the student side of this working. The HR side has been slower, largely because HR data is owned by our parent institution. Novell apparently does offer a Banner solution, but when we started, it was not really available so we did our own using the JDBC driver that is available in Identity Manager.
Novell IDM
We also use Novell IDM using the jdbc driver and we have both student and hr pieces running, and a ldap connector going into luminis for email settings and password synchronization if needed.
JDBC and Novell IDM
cshields36-
Are you using JDBC to connect to the Banner Oracle database and grab the information directly from there rather than listening on the LMB for LDI_Person events?
Not LMB
Yes - for several reasons. One is that we need to send data back to Banner (e.g. the user id and email address). Another is that we did not have Luminis when we did this.
Hey Louis! Tulane? Cool. We
Hey Louis! Tulane? Cool. We know Tulane.. we're in Baton Rouge. ;)
Yes, you can do IDM/IAM with Banner and Luminis. It's a tad complicated. Keep in mind that Luminis wants everything inside the Luminis framework, so the HR feed from Banner goes right to it. You need to pull data off the LMB and use that to feed into your IAM system for prov outside of the Luminis itself.
We're actually working with one of your fellow Universities here in Louisiana on doing just that. We have Luminis EAS working, and prov from Banner to the EAS LDAP server, and prov from Banner to Luminis (courtesy of SunGard), but, yes, the general IAM is the difficult part. There is a lot more going on with IAM than just Luminis. Everybody has UNIX systems, maybe NIS, maybe LDAP, maybe AD, several app-specific databases, etc. That's IAM for you.
What products are you looking at? We've done CA IM, OIM, Sun, etc. Each has its pros and cons. You can also start with a smaller pilot project, get your feet wet, then move to those larger products.
need more info.
Hi,
I am the portal admin at USD. We just went live with our banner/luminis instances - its working great as of now. I would love to know more details about your implementation. Feel free to ask me any questions that you might have.