SAF: Is it required if using ILM and Active Directory
Thu, 2008-09-25 19:44 — mchildress
We are in the beginning stages of a Luminis IV implementation and are working with Sungard on the proposal. They added in 50 hrs for SAF (Secure Authentication Framework). I have a question though, do we really need it? We plan on using Active Directory as our external authentication source and plan on letting users change their password, retrieve their password, as well as authenticate. We also want to be able to make those changes in Luminis and push it up to AD and Banner and vice-versa.
Have any of you done it without SAF? If so, what were your results?
Thanks to all,
Mike
- mchildress's blog
- Login or register to post comments
Hack Your Knowledge
Recent blog posts
- Luminis IV GCF Single Sign On with OSX=Failure PC=Working
- Cisco 4710 - Load Balancer
- First CPIP - ERROR
- Luminis Developer Job Available w/ Stable Organization
- Luminus Developer Job
- SSO to SSB mixed content error in IE
- Avoid email sending when add or delete user from group
- Luminis components
- Luminis 4 & Groupwise 7
- Luminis Developer Needed for Position w/ Stable Organization
Developer Links
Poll
What version of Lumins / OS are you running in production?
Luminis 4.x - Linux
21%
Luminis 4.x - Windows
8%
Luminis 4.x - Solaris
31%
Luminis 3.x - Windows
17%
Luminis 3.x - Solaris
19%
Luminis 3.x - Linux (if so - we need to talk) <G>
4%
We gave up on Luminis - I just like this site !
0%
Total votes: 52
- Login or register to post comments
- Older polls
Syndicate
Comments
Why Luminis?
Do you already have Luminis 3 implemented? if not, why go for Luminis IV then? there are major issues with integration. we implemented open source portal and its awesome. look for either uportal or i would suggest liferay.
-JD
RE: Why Luminis?
Thanks for the comment jdan. The university is already committed to Luminis. Currently we are at version 3.3.3.142 but we will be reimplementing with IV soon. Currently we don't run much with our install (just calendar, group studio, and a few channels).
What are the major issues that you mentioned in your post? Thanks again. Mike
Sort of but need more information...
We use our AD for authentication without SAF. We have set up authentication by role in Luminis with the one role defined being internal Luminis accts (cpadmin, layout accts,etc.). These accounts use Luminis LDAP and everything else uses AD. How do you plan to allow your users to change and retrieve passwords?
Whether you need this really depends on whether you have a good method to allow users to change and retrieve their own passwords. If you would like to discuss further let me know.
Thanks,
James
Re: Sort of but need more information...
I did miss your push from Luminis to AD comment...
If you want to push from Luminis to AD you probably need SAF. We do not do this. Our password change and retrieve is set up in AD and pushed to Luminis...
James
Need SAF to push passwords from Luminis to A.D.
Hi Mike -
Yes, if you want to be able to push password changes from Luminis' password support back to a user's A.D. account, you do need the custom SAF component. Out of the box, Luminis IV EAS won't push passwords to outside systems.
But if you can allow users to update their A.D. passwords directly into A.D., then you could do out of the box EAS against A.D. for Luminis. A.D. will then update Luminis with its password the next time a users logs into Luminis.
Alice Kim
Thanks Alice!
Thanks very much Alice. That is exactly what I needed to know. - Mike