|
RadiantOne VDS Proxy Edition leverages your existing infrastructure to provide centralized IdM services, including authentication, authorization, user management, provisioning, and federation. With VDS, it's easy to adapt quickly to a changing identity environment, increasing flexibility, reducing costs and complexity, and accelerating deployment.
Enterprises deal with a variety of disparate user directories, each with its own distinct schemas, data structures, and protocols. VDS federates queries and unifies multiple directories and database tables into the single LDAP source required by most applications to authenticate and authorize users. Serving as a single identity source for all your IdM services, VDS publishes different views of your existing data, each customized to meet unique security and access management requirements.
A single instance of RadiantOne VDS can publish multiple views of identity data, leveraging existing user directories. VDS Proxy Edition has three key capabilities that overcome the issues of distributed identity, disparate schemas, and heterogeneous sources.
 VIDEO: Overview of Key Capabilities of a Virtual Directory
- Aggregate identity sources into a single virtualized namespace.
- Re-map objects & attributes to match structure and schema needs.
- Extend existing profiles and schemas to enrich profiles (by adding select attributes or combining objects).
These three key capabilities enable a flexible and easy to deploy identity integration service. It enables you to meet the ever-changing needs of your IdM environment in a fraction of the time, without expensive and complex synchronization.
|
Enterprises deal with a variety of data silos:
- Directories: Active Directory, Sun Directory Server, eDirectory
- Databases: Oracle, SQL Server, and DB2
RadiantOne VDS unifies multiple directories and database tables into a common namespace. This results in an aggregation of identities from multiple sources.
VIDEO: Aggregation of Identity Sources (User-Directories)
VIDEO: Product Demonstration
|
Once virtualized, objects and attributes from multiple heterogeneous sources are mapped to a common schema, This allows directory-enabled applications to search a single "directory" for information stored across multiple directories and databases.
An example of this function is the need to map the Active Directory proprietary objectclass "user" to the more common and standard LDAP objectclass "inetorgperson."
VIDEO: Object and Attribute Mapping
VIDEO: Product Demonstration
RadiantOne VDS allows you to join attributes and objects from multiple sources to extend profiles. This is especially useful in solving authorization challenges, where a complete profile of a user is essential for accurate entitlement and policy enforcement.
VIDEO: Extending User Profiles using Join
VIDEO: Product Demonstration
For example, you can join base attributes, such as username and email address, from an LDAP directory with HR attributes retrieved from a database:
If you join objects, any attributes with a common name will become a multi-valued attribute.
A typical example of this operation is to store your user and group information in a standard LDAP repository while leveraging your Active Directory user credentials.
Back to top ^ |
