IBM Tivoli Directory Integrator

© 2006 IBM Corporation

IBM Tivoli Directory Integrator

Jesper Hartoft

[email protected]

© 2006 IBM CorporationIBM Tivoli Directory Integrator

IBM Tivoli Directory Integrator – ITDI

Udfordringen og en mulig løsning…

ITDI overblik

Password synkronisering

En assemblyline

Mapning af data

Udviklingsinterface

Værktøjskassen

Relaterede produkter


Udfordringen

MQ

AIX

ADDirectory

Main-frame

Linux NovellDirectory

.net

WebService

s

WebService

sDatabase

LotusDomino

FileXML / CSV /

TXT


En mulig løsning

MQ

AIX ITDI

ADDirectory

Main-frame

Linux

ITDI

NovellDirectory

.net

WebService

s

WebService

sDatabase

ITDI

FileXML / CSV /

TXT

LotusDomino

?

?


ITDI overblik

Oprindeligt et norsk firma - MetaMerge

Burde hedde Tivoli Data Integrator

ITDI er en værktøjskasse, ikke en færdiglavet løsning

Overførsel af oplysninger mellem to systemer kan stort set laves med drag-and-drop

Bruger JavaScript til kodning af tilpasninger

Kan køres på bestemte tidspunkter eller startes af handlinger/aktiviteter


ITDI overblik Kan kommunikere med

– Active Directory– Lotus Domino– DSML / SOAP– Exchange– Tekst filer (CSV, XML)– FTP– IBM Directory Server– JDBC– JMS– JMX– JNDI– LDAP– MQ– Netscape / iPlanet– RDMBS (DB2 + Oracle)– SAP R/3– SNMP– Web Services– z/OS

Password synkronisering fra– Windows 2000/AD– IBM Directory Server– RACF– Lotus Domino - HTTP Password– SunOne– Unix / Linux (Solaris, AIX, HP-UX, RedHat, Suse)

Kan også– Fungere som LDAP proxy– WebServer– Modtage oplysninger via Remote SSH– Lave kaffe (næsten)


Password synkronisering

Lotus Domino

AD

Bruger/gruppe synkronisering

Password store(LDAP / MQ series)

ITDI

PasswordSync plugin

Userid og nyt password

SSL

SSLHTTP Password


En assemblyline

MicrosoftAD

• En-til-en• En-til-mange• Mange-til-en• Mange-til-mange

HRIBM

DirectoryServer

Domino

Data flow behandlig af data, transformering og integration HR

Web App

Input

Output

IterationIteration

DeltasDeltasIBM Directory Integrator


Mapning af data

cn sn objectClass givenNameempNumber empTypeuid ou title postalAddress postalCode st lmailtlphoneNum

FirstNameLastNameEmployeeNumStatusDepartmentTitleAddressZipStateCity


Værktøjskassen / links

”RabbitHole” website

– Examples, documentation - www.tdi-users.org

Softerra LDAP browser - www.softerra.com

– til at gennemse LDAP directories

– til af afprøve søgninger

Wireshark network sniffer - www.wireshark.org

– tidligere Ethereal

– til at undersøge LDAP trafik


Relaterede produkter

IBM Tivoli Directory Server

– LDAP v3 industri standard

– Bruger IBM DB2 UDB 8.1 (følger med)

– Kører på Windows, AIX, Linux, Solaris, HP-UX, iSeries, pSeries, zSeries

– Tæt integration med IBM operativsystemer, Websphere og Tivoli identity management og sikkerhedsprodukter

– Pris: 746,- + moms


Spørgsmål ?


IBM Tivoli Continous Data Protection (CDP)


Replication Traditional Backup

A new backup paradigm using a unique hybrid approach

• To-Disk duplication

• Lightening fast

• Real-time for high-importance files

• Tolerant of transient networks

• Multiple targets

• Versioning of files

• Point-in-time restore

• Central administration

• Archiving (vaulting)

• Retention

• Highly scalable

1 10 patents filed

The new direction in Data Protection is: Real-Time, To-Disk, Native Format, Simplified management.

What is Tivoli CDP for Files?


IBM Tivoli Continuous Data Protection for Files

Transparent, always-on, airbag-like protection. Whether ‘connected’ or not.

File Server or USB or Removable

TSM Server

Local CDP Cache

Replication (2)

Replication (3)Replication (1)


Continuously protects important files without doing a thing.

Protects all other files on a schedule. Tolerant of network “spottiness”. Up to three copies made. Local cache for highest performance, least

impact, and greatest availability. Off-machine for protection against, well,

life. Run any where anti-virus runs (file servers,

laptops, workstations, etc.)

File Save


Transparent, always-on, airbag-like protection. Whether ‘connected’ or not.

File Server or USB or Removable

TSM Server

Local CDP Cache

Replication (2)

Replication (3)Replication (1)


Continuously protects important files without doing a thing (and other files on a schedule).

Tolerant of network “spottiness”. Local cache for highest performance, least

impact, and greatest availability. Off-machine for protection against, well,

life.

File Save

Local Disk Cache File Server / USB Disk/ FTP / HTTPs ...


Configure CDP

These files will be immediately copied when they change; sent to 2 different target areas potentially.

Storing locally, users have local protection and restoration; up to a configured limit; every “save” is a unique version.

Off-machine protects against primary machine loss.


Configure Scheduled Protection

These files will be protected on a schedule

Target is off-machine (file server, external drive, external LUN, anything).

Special support for those pesky and huge EMAIL files...


Status Screen

Live update

Summary of protection, including accurate pending counts.

Recent activity; typically, files that have been copied to a target area


Target Admin

Visual summary of other clients and their recent activity.

Drill-down for details.

Any client not backed up within 24 hours is shown in YELLOW.

Any client that resulted in failed transfers is shown in RED.

Clicking on a client displays full XML configuration of that client (platform info, configuration database, operational statistics, etc).

Every “backup” results in XML log files of the activity that can be examined. All logs are retained (managed by pool size) and can be viewed or analyzed by other XML tools.

Even though TCDP is a client-only architecture, typical backup-administration features are possible. The file server is a repository of activity logs and information exchange managed cooperatively by the clients (“federated”); including distribution of new versions and configs.

Even though TCDP is a client-only architecture, typical backup-administration features are possible. The file server is a repository of activity logs and information exchange managed cooperatively by the clients (“federated”); including distribution of new versions and configs.


Restore Screen

Specify which area to restore from (local or remote)

If desired, specify a point-in-time to restore-to.

Typical select and/or drill-down interface; Restore single files or trees.

Typical backup products have to employ a “database” to keep track of material; CDP uses the file system itself and dynamically builds the restore views. File systems are actually pretty powerful databases in and of themselves.


Restoring versions

If a file has multiple versions available, the count is shown.

Drilling-down into such a file will show all the known versions; users can select a specific one to restore, or use point-in-time specification.

Again, this is accomplished without a database; clever on-disk file naming conventions (patents pending) allow for tracking material easily.

All files are stored “natively”, as files; users can use their own tools to find or index or search or restore, if desired.


Remote Settings

Version & Space control for remote targets.

Encryption

Compression

Sub-file copy for files over a size threshold.


Advanced Settings

Management/report area separation

Email / Database file specification

Skipping extra large files

Throttling

Publishing (and locking) the configuration


Pris

IBM Continuous Data Protection for files Client License + SW Maintenance 12 Months (D55H7LL)

Listepris: 261,- + moms

IBM Tivoli Directory Integrator

Documents

Transcript of IBM Tivoli Directory Integrator