Gartner setting objectives for a directory services project
This presentation is the property of its rightful owner.
Sponsored Links
1 / 22

Gartner: Setting Objectives for a Directory Services Project PowerPoint PPT Presentation


  • 45 Views
  • Uploaded on
  • Presentation posted in: General

Gartner: Setting Objectives for a Directory Services Project. John Enck Vice President and Research Director Server and Directory Strategies Gartner, Inc. Key Issues. What business issues will be successfully addressed by directories?

Download Presentation

Gartner: Setting Objectives for a Directory Services Project

An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -

Presentation Transcript


Gartner setting objectives for a directory services project

Gartner: Setting Objectives for a Directory Services Project

John Enck

Vice President and Research Director

Server and Directory Strategies

Gartner, Inc.


Key issues

Key Issues

  • What business issues will be successfully addressed by directories?

  • How can enterprises successfully address the integration of Active Directory and eDirectory?

  • What roles will metadirectories and e-provisioning play in enterprises during the next five years?


Key issues1

Key Issues

  • What business issues will be successfully addressed by directories?

  • How can enterprises successfully address the integration of Active Directory and eDirectory?

  • What roles will metadirectories and e-provisioning play in enterprises during the next five years?


The ideal world one directory for everything

. . .

. . .

The Ideal World: One Directory for Everything

White Pages

Voice

Directory

Extranet/Intranet

Authentication

Application

Enabling

Systems/User

Management

Legacy

Connectivity

Certificate

Enabling

Platform Authentication


The real world multiple directories

. . .

. . .

. . .

. . .

The Real World: Multiple Directories!

White Pages

Certificate

Enabling

Voice

Directory

Extranet/Intranet

Authentication

Application Enabling

. . .

Systems/User

Management

Legacy

Connectivity

Platform

Authentication

. . .


Two main categories of directories

NOS

Extranet/Intranet

Buying Center:

Rollout:

ROI Argument:

Scalability:

Design Goal:

Users:

Central IS

Years

Infrastructure, Security,

Application enabling

Thousands of entries,

Hundreds of servers

Authenticate/Authorize,

Resource management

Employees, Contractors

Business unit

Months

Application enabling,

Business agility

Millions of entries,

Few servers

Authenticate/Authorize,

Personalize

Customers, Partners,

Employees, Contractors

Two Main Categories of Directories


The missing link

The Missing Link?

?

The

NOS

Directory

The

Intranet/Extranet

Directory

The

Enterprise

Directory


Key issues2

Key Issues

  • What business issues will be successfully addressed by directories?

  • How can enterprises successfully address the integration of Active Directory and eDirectory?

  • What roles will metadirectories and e-provisioning play in enterprises during the next five years?


Active directory as an extranet intranet directory

Active Directory as an Extranet/Intranet Directory

DirectoryFunctionality

Longhorn

Windows .NET Server

Windows 2000

Directory functionality

that is “good enough”

for typical enterprise

extranet requirements

Active Directory Extranet/Intranet Capabilities

Time

2001

2002

2000

2003

2004


Extranet intranet directory services magic quadrant

Challengers

Leaders

Microsoft

Active Directory

Oracle Internet Directory

Novell

eDirectory

Ability

IBM SecureWay

to

Sun-iPlanet

IBM Domino

Execute

CA eTrust

Critical Path

Syntegra Aphelion

Siemens DirX

Syntegra GDS

Nexor

OpenLDAP

DCE/CDS

As of 1/02

Niche Players

Visionaries

Completeness of Vision

Extranet/Intranet Directory Services Magic Quadrant


Active directory as a nos directory

NT 4.0 Domain to AD Migration

Number ofSupported Users

100,000

Original (2000)

growth forecast

Mainstream (Type B)

Active Directory

deployments

(estimate)

50,000

Economic Slow Down

Time

5,000

2000

2001

2002

2003

2004

Active Directory as a NOS Directory


Active directory versus nds a complex question

NDS

Active

Directory

GroupWise

eDirectory

ZENworks

DirXML

iChain

SSO

Exchange 2000

IntelliMirror

Certificates

Passport

App dev

IIS

Active Directory versus NDS?A Complex Question


Directory integration strategies

Password Synchronization/Reset

Single Sign-On

Novell

PassLogix

RSA Security

M-Tech

Blockade

Novell

Directories

iPlanet, Novell, Microsoft, Critical Path, Siemens

Meta-

directories

Courion

Netegrity

Waveset

Securant

BMC

Access360

Business Layers

(e)Provisioning

Oblix

Extranet Access

Management

Directory Integration Strategies


Metadirectories and e provisioning

Password Synchronization/Reset

Single Sign-On

Directories

Meta-

directories

(e)Provisioning

Extranet Access

Management

Metadirectories and (e)Provisioning


Key issues3

Key Issues

  • What business issues will be successfully addressed by directories?

  • How can enterprises successfully address the integration of Active Directory and eDirectory?

  • What roles will metadirectories and e-provisioning play in enterprises during the next five years?


Metadirectory products

Single point of administration

Data accuracy and precedence

Password synchronization

Single sign-on

Generic LDAP-enabled directories (e.g., Netscape)

NDS/eDirectory

. . .

. . .

Active Directory

Native OS directories (e.g., Unix and mainframe)

This is an example of a text file that is not meant to be read on the screen

The second line is different than the first

and the third line is different than the first two by some amount

This is an example of a text file that is not meant to be read on the screen

The second line is different than the first

This is an example of a text file that is not meant to be read on the screen

The second line is different than the first

and the third line is different than the first two by some amount

and the third line is different than the first two by some amount and some more

This is an example of a text file that is not meant to be read on the screen

The second line is different than the first

and the third line is different than the first two by some amount

This is an example of a text file that is not meant to be read on the screen

Oracle, Microsoft SQL Server, DB2 native access or ODBC

ERP (e.g., PeopleSoft and SAP)

Generic text file

Metadirectory Products


Metadirectory services magic quadrant

Challengers

Leaders

Microsoft

MMS

Ability

to

Execute

iPlanet

Metadirectory

Novell

DirXML

V-Directories

Radiant Logic

MaXware

Siemens

DirXmetahub

Critical

Path

InJoin

Middleware

Metamerge

Syntegra

As of 8/01

Niche Players

Visionaries

Completeness of Vision

Metadirectory Services Magic Quadrant


E provisioning

(e)Provisioning

  • Provisioning is similar to metadirectory in that it provides (in most cases) multi-directional synchronization, however provisioning also provides:

    • Workflow features to tie in other business processes (e.g., automated procurements, e-mail approvals, etc.)

    • Security context mapping (e.g., knowing that a user of type "sales" belongs to specific NOS groups and has specific levels of access in key applications)

    • Optionally synchronizing passwords between respositories


The do it yourself alternative

The advantages and disadvantages

of a metadirectory solution PLUS

the option to embed business logic

Custom or commercial middleware

Generic LDAP

directories

Your

Code

Here!

NDS/eDirectory

Change logs

Stored procs

. . .

. . .

File I/O

Triggers

Active Directory

Native OS directories (e.g., Unix and mainframe)

SDKs

APIs

This is an example of a text file that is not meant to be read on the screen

The second line is different than the first

and the third line is different than the first two by some amount

This is an example of a text file that is not meant to be read on the screen

The second line is different than the first

This is an example of a text file that is not meant to be read on the screen

The second line is different than the first

and the third line is different than the first two by some amount

and the third line is different than the first two by some amount and some more

This is an example of a text file that is not meant to be read on the screen

The second line is different than the first

and the third line is different than the first two by some amount

This is an example of a text file that is not meant to be read on the screen

Oracle, Microsoft SQL Server, DB2 native access or ODBC

ERP (e.g., PeopleSoft and SAP)

Generic text file

The Do-It-Yourself Alternative


First steps toward a multiple directory strategy

First Steps Toward a Multiple Directory Strategy

1Survey data sourcesand assess the needs of people, applications and network infrastructures.

2Rank all of the enterprise’s directoriesin terms of strategic importance. Look for the “80% solution.”

3Identify the information stored in these directories and categorize unique and overlapping information.

4Identify the authoritative sourcesof this information.

5Design a name space that uniquely identifies user objects in each directory and develop cross-references between directories as needed.

6Define specific projects and identify related products. White pages? Human Resources integration? Windows 2000 deployment?

7-99Define the business value!!!


Selling directory projects

Selling Directory Projects

  • Tie to a new internal application (e.g., e-mail)

  • Tie to a new extranet application (e.g., CRM)

  • Tie to a defined TCO reduction project (e.g., ZENworks)

  • Agility for future mergers and acquisitions

  • Agility to deploy future applications

  • Facilitate cross-communications (e-mail, white pages)

  • Faster employee start time (hire)

  • Reduce security exposure for exiting employees (fire)

  • Support web services or portal initiatives

  • Reduced administration (are you ready to cut employees?)

  • Infrastructure upgrade


Summary

Summary

  • Accept that a single directory is not achievable, and focus on the issues of directory management and synchronization

  • Recognize that if you are deploying Windows servers, dealing with Active Directory is unavoidable

  • Weigh the attraction of an “enterprise directory” strategy against the flexibility of an integrated metadirectory or provisioning solution

  • Be prepared to show real business value to a metadirectory or provisioning solution

  • Remember: Directory projects involve both politics and technology!


  • Login