Post on 11-Jan-2016
description
© 2006 IBM Corporation
IBM Tivoli Directory Integrator
Jesper Hartoft
jhartoft@dk.ibm.com
© 2006 IBM CorporationIBM Tivoli Directory Integrator
IBM Tivoli Directory Integrator – ITDI
Udfordringen og en mulig løsning…
ITDI overblik
Password synkronisering
En assemblyline
Mapning af data
Udviklingsinterface
Værktøjskassen
Relaterede produkter
© 2006 IBM CorporationIBM Tivoli Directory Integrator
Udfordringen
MQ
AIX
ADDirectory
Main-frame
Linux NovellDirectory
.net
WebService
s
WebService
sDatabase
LotusDomino
FileXML / CSV /
TXT
© 2006 IBM CorporationIBM Tivoli Directory Integrator
En mulig løsning
MQ
AIX ITDI
ADDirectory
Main-frame
Linux
ITDI
NovellDirectory
.net
WebService
s
WebService
sDatabase
ITDI
FileXML / CSV /
TXT
LotusDomino
?
?
© 2006 IBM CorporationIBM Tivoli Directory Integrator
ITDI overblik
Oprindeligt et norsk firma - MetaMerge
Burde hedde Tivoli Data Integrator
ITDI er en værktøjskasse, ikke en færdiglavet løsning
Overførsel af oplysninger mellem to systemer kan stort set laves med drag-and-drop
Bruger JavaScript til kodning af tilpasninger
Kan køres på bestemte tidspunkter eller startes af handlinger/aktiviteter
© 2006 IBM CorporationIBM Tivoli Directory Integrator
ITDI overblik Kan kommunikere med
– Active Directory– Lotus Domino– DSML / SOAP– Exchange– Tekst filer (CSV, XML)– FTP– IBM Directory Server– JDBC– JMS– JMX– JNDI– LDAP– MQ– Netscape / iPlanet– RDMBS (DB2 + Oracle)– SAP R/3– SNMP– Web Services– z/OS
Password synkronisering fra– Windows 2000/AD– IBM Directory Server– RACF– Lotus Domino - HTTP Password– SunOne– Unix / Linux (Solaris, AIX, HP-UX, RedHat, Suse)
Kan også– Fungere som LDAP proxy– WebServer– Modtage oplysninger via Remote SSH– Lave kaffe (næsten)
© 2006 IBM CorporationIBM Tivoli Directory Integrator
Password synkronisering
Lotus Domino
AD
Bruger/gruppe synkronisering
Password store(LDAP / MQ series)
ITDI
PasswordSync plugin
Userid og nyt password
SSL
SSLHTTP Password
© 2006 IBM CorporationIBM Tivoli Directory Integrator
En assemblyline
MicrosoftAD
• En-til-en• En-til-mange• Mange-til-en• Mange-til-mange
HRIBM
DirectoryServer
Domino
Data flow behandlig af data, transformering og integration HR
Web App
Input
Output
IterationIteration
DeltasDeltasIBM Directory Integrator
© 2006 IBM CorporationIBM Tivoli Directory Integrator
Mapning af data
cn sn objectClass givenNameempNumber empTypeuid ou title postalAddress postalCode st lmailtlphoneNum
FirstNameLastNameEmployeeNumStatusDepartmentTitleAddressZipStateCity
© 2006 IBM CorporationIBM Tivoli Directory Integrator
© 2006 IBM CorporationIBM Tivoli Directory Integrator
Værktøjskassen / links
”RabbitHole” website
– Examples, documentation - www.tdi-users.org
Softerra LDAP browser - www.softerra.com
– til at gennemse LDAP directories
– til af afprøve søgninger
Wireshark network sniffer - www.wireshark.org
– tidligere Ethereal
– til at undersøge LDAP trafik
© 2006 IBM CorporationIBM Tivoli Directory Integrator
Relaterede produkter
IBM Tivoli Directory Server
– LDAP v3 industri standard
– Bruger IBM DB2 UDB 8.1 (følger med)
– Kører på Windows, AIX, Linux, Solaris, HP-UX, iSeries, pSeries, zSeries
– Tæt integration med IBM operativsystemer, Websphere og Tivoli identity management og sikkerhedsprodukter
– Pris: 746,- + moms
© 2006 IBM CorporationIBM Tivoli Directory Integrator
Spørgsmål ?
© 2006 IBM CorporationIBM Tivoli Directory Integrator
IBM Tivoli Continous Data Protection (CDP)
© 2006 IBM Corporation
Replication Traditional Backup
A new backup paradigm using a unique hybrid approach
• To-Disk duplication
• Lightening fast
• Real-time for high-importance files
• Tolerant of transient networks
• Multiple targets
• Versioning of files
• Point-in-time restore
• Central administration
• Archiving (vaulting)
• Retention
• Highly scalable
1 10 patents filed
The new direction in Data Protection is: Real-Time, To-Disk, Native Format, Simplified management.
What is Tivoli CDP for Files?
© 2006 IBM Corporation
IBM Tivoli Continuous Data Protection for Files
Transparent, always-on, airbag-like protection. Whether ‘connected’ or not.
File Server or USB or Removable
TSM Server
Local CDP Cache
Replication (2)
Replication (3)Replication (1)
IBM Tivoli Continuous Data Protection for Files
Continuously protects important files without doing a thing.
Protects all other files on a schedule. Tolerant of network “spottiness”. Up to three copies made. Local cache for highest performance, least
impact, and greatest availability. Off-machine for protection against, well,
life. Run any where anti-virus runs (file servers,
laptops, workstations, etc.)
File Save
IBM Tivoli Continuous Data Protection for Files
Transparent, always-on, airbag-like protection. Whether ‘connected’ or not.
File Server or USB or Removable
TSM Server
Local CDP Cache
Replication (2)
Replication (3)Replication (1)
IBM Tivoli Continuous Data Protection for Files
Continuously protects important files without doing a thing (and other files on a schedule).
Tolerant of network “spottiness”. Local cache for highest performance, least
impact, and greatest availability. Off-machine for protection against, well,
life.
File Save
Local Disk Cache File Server / USB Disk/ FTP / HTTPs ...
© 2006 IBM Corporation
Configure CDP
These files will be immediately copied when they change; sent to 2 different target areas potentially.
Storing locally, users have local protection and restoration; up to a configured limit; every “save” is a unique version.
Off-machine protects against primary machine loss.
© 2006 IBM Corporation
Configure Scheduled Protection
These files will be protected on a schedule
Target is off-machine (file server, external drive, external LUN, anything).
Special support for those pesky and huge EMAIL files...
© 2006 IBM Corporation
Status Screen
Live update
Summary of protection, including accurate pending counts.
Recent activity; typically, files that have been copied to a target area
© 2006 IBM Corporation
Target Admin
Visual summary of other clients and their recent activity.
Drill-down for details.
Any client not backed up within 24 hours is shown in YELLOW.
Any client that resulted in failed transfers is shown in RED.
Clicking on a client displays full XML configuration of that client (platform info, configuration database, operational statistics, etc).
Every “backup” results in XML log files of the activity that can be examined. All logs are retained (managed by pool size) and can be viewed or analyzed by other XML tools.
Even though TCDP is a client-only architecture, typical backup-administration features are possible. The file server is a repository of activity logs and information exchange managed cooperatively by the clients (“federated”); including distribution of new versions and configs.
Even though TCDP is a client-only architecture, typical backup-administration features are possible. The file server is a repository of activity logs and information exchange managed cooperatively by the clients (“federated”); including distribution of new versions and configs.
© 2006 IBM Corporation
Restore Screen
Specify which area to restore from (local or remote)
If desired, specify a point-in-time to restore-to.
Typical select and/or drill-down interface; Restore single files or trees.
Typical backup products have to employ a “database” to keep track of material; CDP uses the file system itself and dynamically builds the restore views. File systems are actually pretty powerful databases in and of themselves.
© 2006 IBM Corporation
Restoring versions
If a file has multiple versions available, the count is shown.
Drilling-down into such a file will show all the known versions; users can select a specific one to restore, or use point-in-time specification.
Again, this is accomplished without a database; clever on-disk file naming conventions (patents pending) allow for tracking material easily.
All files are stored “natively”, as files; users can use their own tools to find or index or search or restore, if desired.
© 2006 IBM Corporation
Remote Settings
Version & Space control for remote targets.
Encryption
Compression
Sub-file copy for files over a size threshold.
© 2006 IBM Corporation
Advanced Settings
Management/report area separation
Email / Database file specification
Skipping extra large files
Throttling
Publishing (and locking) the configuration
© 2006 IBM CorporationIBM Tivoli Directory Integrator
Pris
IBM Continuous Data Protection for files Client License + SW Maintenance 12 Months (D55H7LL)
Listepris: 261,- + moms