user administration system bas at the university of oslo
Download
Skip this Video
Download Presentation
User-administration system (BAS) at the University of Oslo

Loading in 2 Seconds...

play fullscreen
1 / 16

UREG2000 - PowerPoint PPT Presentation


  • 203 Views
  • Uploaded on

User-administration system (BAS) at the University of Oslo. Creating of a single user-administration system for University of Oslo By Bård Henry Moum Jakobsen. University of Oslo (UoO), Norway. 32 000 students 6 000 fac. & staff 4 000 other!

loader
I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.
capcha
Download Presentation

PowerPoint Slideshow about 'UREG2000' - Renfred


An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript
user administration system bas at the university of oslo

User-administration system (BAS) at the University of Oslo

Creating of a single user-administration system for University of Oslo

By

Bård Henry Moum Jakobsen

university of oslo uoo norway
University of Oslo (UoO), Norway
  • 32 000 students
  • 6 000 fac. & staff
  • 4 000 other!
  • 35 431 users in one user-management system UREG2000
  • Ca 1 600 computers for students
    • Win*, MacOS, Linux, mm
  • almost 9 000 computers…
what is an user administration system bas
What is an User administration system (BAS)

Student

registry

BAS

Persons

Users

Personal registery

slide5
BAS

BAS

AT

(LDAP)

SR

(FS/MSTAS)

Other

HR

user administration system bas
User administration system (BAS)
  • Person
  • unique ID
  • Name
  • Address
  • Affiliation
  • User
  • Username (UID)
  • Password
  • Mail address
  • Home dir
  • Group
  • Group ID (GID)
  • Comment
  • Members
  • - users
  • - other Groups
uoos bas ureg2000
UoOs BAS, UREG2000
  • A SQL (Oracle) database
  • API in Perl5
  • A collection of programs (mostly Perl5) for managing users and attributes
  • Procedures for extracting information from LT (UoOs HR-system) and FS (UoOs Student registry)
  • Printer accounting!
slide8
More…
  • Creates:
    • NIS (2 domains)
    • AD (win2k)
    • LDIF
    • IMS Enterprise
    • Domino Directory
    • Tivoli
    • Remedy ARS
    • Exim (mail)
    • Mailman (mail-lists)
    • etc
lt hr system i
LT – HR-system (i)
  • Gives UREG:
    • Organizational units
      • SKO – unit number
        • Made national by our national Student registry system
        • 4 parts
        • Institution (‘\d{4}’)
        • Faculty (‘\d{2}’)
        • Department (‘\d{2}’)
        • Group (‘\d{2}’)
      • Organization unit Name
      • Phone, fax, URL, email (for the unit)
      • Addresses (Snail-mail and physical address)
lt hr system ii
LT – HR-system (ii)
  • Gives UREG
    • Person
      • National id-number (Social security number)
      • Name
      • Org.unit
      • Type (Faculty, Staff, other)
      • Problem: It takes time to register a person, to much time…
  • Gets from UREG
    • Email-addresses
fs student registry
FS – Student registry
  • Gives UREG:
    • Persons
      • National id-number (Social security number)
      • Name
      • addresses
      • Curriculum
  • Gets from UREG
    • Email-addresses
slide12

LT

FS

BOFH

Ureg2000

LDAP

UA (Adgangskontroll)

Notes

Exim/Mailman

NT

LMS

(CF)

Tivoli

PRISS

NIS (UiO)

ARS

NIS (IfI)

AD (W2K)

Radius

ureg or bas creates
UREG (or BAS) creates
  • Userid/shortname ’baardj’ (unix-username)
    • Username in NIS
    • Loginname in AD
    • UID in LDAP (for MacOS X)
  • Groups, general group basic
    • Creating Filegroups
    • Creating netgroups
    • Creating AD groups
    • Creating Notes groups
    • Creating mailinglists
is this a pki no
Is this a PKI? No!
  • But it is a requirement for a functional PKI.
  • We are not a CA (to much work)
  • But we need certificates for persons, roles, organizations, units and servers.
  • External CA for persons, internal for all others.
  • We need a map from ID in persons certificates to an uniq id at the University, which CA is secondary
more contact us
More? Contact us!