1 / 22

Gartner: Setting Objectives for a Directory Services Project

Gartner: Setting Objectives for a Directory Services Project. John Enck Vice President and Research Director Server and Directory Strategies Gartner, Inc. Key Issues. What business issues will be successfully addressed by directories?

milo
Download Presentation

Gartner: Setting Objectives for a Directory Services Project

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Gartner: Setting Objectives for a Directory Services Project John Enck Vice President and Research Director Server and Directory Strategies Gartner, Inc.

  2. Key Issues • What business issues will be successfully addressed by directories? • How can enterprises successfully address the integration of Active Directory and eDirectory? • What roles will metadirectories and e-provisioning play in enterprises during the next five years?

  3. Key Issues • What business issues will be successfully addressed by directories? • How can enterprises successfully address the integration of Active Directory and eDirectory? • What roles will metadirectories and e-provisioning play in enterprises during the next five years?

  4. . . . . . . The Ideal World: One Directory for Everything White Pages Voice Directory Extranet/Intranet Authentication Application Enabling Systems/User Management Legacy Connectivity Certificate Enabling Platform Authentication

  5. . . . . . . . . . . . . The Real World: Multiple Directories! White Pages Certificate Enabling Voice Directory Extranet/Intranet Authentication Application Enabling . . . Systems/User Management Legacy Connectivity Platform Authentication . . .

  6. NOS Extranet/Intranet Buying Center: Rollout: ROI Argument: Scalability: Design Goal: Users: Central IS Years Infrastructure, Security, Application enabling Thousands of entries, Hundreds of servers Authenticate/Authorize, Resource management Employees, Contractors Business unit Months Application enabling, Business agility Millions of entries, Few servers Authenticate/Authorize, Personalize Customers, Partners, Employees, Contractors Two Main Categories of Directories

  7. The Missing Link? ? The NOS Directory The Intranet/Extranet Directory The Enterprise Directory

  8. Key Issues • What business issues will be successfully addressed by directories? • How can enterprises successfully address the integration of Active Directory and eDirectory? • What roles will metadirectories and e-provisioning play in enterprises during the next five years?

  9. Active Directory as an Extranet/Intranet Directory DirectoryFunctionality Longhorn Windows .NET Server Windows 2000 Directory functionality that is “good enough” for typical enterprise extranet requirements Active Directory Extranet/Intranet Capabilities Time 2001 2002 2000 2003 2004

  10. Challengers Leaders Microsoft Active Directory Oracle Internet Directory Novell eDirectory Ability IBM SecureWay to Sun-iPlanet IBM Domino Execute CA eTrust Critical Path Syntegra Aphelion Siemens DirX Syntegra GDS Nexor OpenLDAP DCE/CDS As of 1/02 Niche Players Visionaries Completeness of Vision Extranet/Intranet Directory Services Magic Quadrant

  11. NT 4.0 Domain to AD Migration Number ofSupported Users 100,000 Original (2000) growth forecast Mainstream (Type B) Active Directory deployments (estimate) 50,000 Economic Slow Down Time 5,000 2000 2001 2002 2003 2004 Active Directory as a NOS Directory

  12. NDS Active Directory GroupWise eDirectory ZENworks DirXML iChain SSO Exchange 2000 IntelliMirror Certificates Passport App dev IIS Active Directory versus NDS?A Complex Question

  13. Password Synchronization/Reset Single Sign-On Novell PassLogix RSA Security M-Tech Blockade Novell Directories iPlanet, Novell, Microsoft, Critical Path, Siemens Meta- directories Courion Netegrity Waveset Securant BMC Access360 Business Layers (e)Provisioning Oblix Extranet Access Management Directory Integration Strategies

  14. Password Synchronization/Reset Single Sign-On Directories Meta- directories (e)Provisioning Extranet Access Management Metadirectories and (e)Provisioning

  15. Key Issues • What business issues will be successfully addressed by directories? • How can enterprises successfully address the integration of Active Directory and eDirectory? • What roles will metadirectories and e-provisioning play in enterprises during the next five years?

  16. Single point of administration Data accuracy and precedence Password synchronization Single sign-on Generic LDAP-enabled directories (e.g., Netscape) NDS/eDirectory . . . . . . Active Directory Native OS directories (e.g., Unix and mainframe) This is an example of a text file that is not meant to be read on the screen The second line is different than the first and the third line is different than the first two by some amount This is an example of a text file that is not meant to be read on the screen The second line is different than the first This is an example of a text file that is not meant to be read on the screen The second line is different than the first and the third line is different than the first two by some amount and the third line is different than the first two by some amount and some more This is an example of a text file that is not meant to be read on the screen The second line is different than the first and the third line is different than the first two by some amount This is an example of a text file that is not meant to be read on the screen Oracle, Microsoft SQL Server, DB2 native access or ODBC ERP (e.g., PeopleSoft and SAP) Generic text file Metadirectory Products

  17. Challengers Leaders Microsoft MMS Ability to Execute iPlanet Metadirectory Novell DirXML V-Directories Radiant Logic MaXware Siemens DirXmetahub Critical Path InJoin Middleware Metamerge Syntegra As of 8/01 Niche Players Visionaries Completeness of Vision Metadirectory Services Magic Quadrant

  18. (e)Provisioning • Provisioning is similar to metadirectory in that it provides (in most cases) multi-directional synchronization, however provisioning also provides: • Workflow features to tie in other business processes (e.g., automated procurements, e-mail approvals, etc.) • Security context mapping (e.g., knowing that a user of type "sales" belongs to specific NOS groups and has specific levels of access in key applications) • Optionally synchronizing passwords between respositories

  19. The advantages and disadvantages of a metadirectory solution PLUS the option to embed business logic Custom or commercial middleware Generic LDAP directories Your Code Here! NDS/eDirectory Change logs Stored procs . . . . . . File I/O Triggers Active Directory Native OS directories (e.g., Unix and mainframe) SDKs APIs This is an example of a text file that is not meant to be read on the screen The second line is different than the first and the third line is different than the first two by some amount This is an example of a text file that is not meant to be read on the screen The second line is different than the first This is an example of a text file that is not meant to be read on the screen The second line is different than the first and the third line is different than the first two by some amount and the third line is different than the first two by some amount and some more This is an example of a text file that is not meant to be read on the screen The second line is different than the first and the third line is different than the first two by some amount This is an example of a text file that is not meant to be read on the screen Oracle, Microsoft SQL Server, DB2 native access or ODBC ERP (e.g., PeopleSoft and SAP) Generic text file The Do-It-Yourself Alternative

  20. First Steps Toward a Multiple Directory Strategy 1Survey data sourcesand assess the needs of people, applications and network infrastructures. 2Rank all of the enterprise’s directoriesin terms of strategic importance. Look for the “80% solution.” 3Identify the information stored in these directories and categorize unique and overlapping information. 4Identify the authoritative sourcesof this information. 5Design a name space that uniquely identifies user objects in each directory and develop cross-references between directories as needed. 6Define specific projects and identify related products. White pages? Human Resources integration? Windows 2000 deployment? 7-99Define the business value!!!

  21. Selling Directory Projects • Tie to a new internal application (e.g., e-mail) • Tie to a new extranet application (e.g., CRM) • Tie to a defined TCO reduction project (e.g., ZENworks) • Agility for future mergers and acquisitions • Agility to deploy future applications • Facilitate cross-communications (e-mail, white pages) • Faster employee start time (hire) • Reduce security exposure for exiting employees (fire) • Support web services or portal initiatives • Reduced administration (are you ready to cut employees?) • Infrastructure upgrade

  22. Summary • Accept that a single directory is not achievable, and focus on the issues of directory management and synchronization • Recognize that if you are deploying Windows servers, dealing with Active Directory is unavoidable • Weigh the attraction of an “enterprise directory” strategy against the flexibility of an integrated metadirectory or provisioning solution • Be prepared to show real business value to a metadirectory or provisioning solution • Remember: Directory projects involve both politics and technology!

More Related