11
© 2013 Adobe Systems Incorporated. All Rights Reserved. Adobe Confidential. AEM & IDM | Abstracting the security layer Tim Waring | Senior Consultant Adobe

AEM & Identity Management (IDM) Integration

Tags:

Embed Size (px)

Citation preview

Page 1: AEM & Identity Management (IDM) Integration

© 2013 Adobe Systems Incorporated. All Rights Reserved. Adobe Confidential.

AEM & IDM | Abstracting the security layerTim Waring | Senior Consultant

Adobe

Page 2: AEM & Identity Management (IDM) Integration

© 2013 Adobe Systems Incorporated. All Rights Reserved. Adobe Confidential.

Project Background

Re-platform on AEM 5.6.1

Personalisation

My Account

Legacy system integration

IDM

Page 3: AEM & Identity Management (IDM) Integration

© 2013 Adobe Systems Incorporated. All Rights Reserved. Adobe Confidential.

IDM requirements

Protect URI

resource in AEM

sites based on

User’s roles

Share user context

among AEM and

other Java app

pools

Single sign on

&

Serve more traffic

Page 4: AEM & Identity Management (IDM) Integration

© 2013 Adobe Systems Incorporated. All Rights Reserved. Adobe Confidential.

Previous IDM setup

1. Page request

2. IDM Intercept

3. Retrieve User Profile

4. Return token

5. Set HTTP header

6. Cache response content

User iPlanet OpenSSO LDAP Site

Page 5: AEM & Identity Management (IDM) Integration

© 2013 Adobe Systems Incorporated. All Rights Reserved. Adobe Confidential.

The possible options

Deployment

Performance

Maintenance

Extensibility

Trusted HeaderReverse Proxy IntegrationLDAP Integration

Page 6: AEM & Identity Management (IDM) Integration

© 2013 Adobe Systems Incorporated. All Rights Reserved. Adobe Confidential.

The Abstracted IDM Solution – similar to SAML

1. Request secured page

2. IDM Intercept

3. Redirect Login

6. Return token

9. Set HTTP header

User Dispatch OpenSSO DAUI Publish

4. Login submit

5. Authenticate

7. Redirect to secured page

8. Validate token

CRM

10. Restful Service11. Dynamic Content

Page 7: AEM & Identity Management (IDM) Integration

© 2013 Adobe Systems Incorporated. All Rights Reserved. Adobe Confidential.

IDM Achievements

Extensibility – Easily deployed with other application modules

Maintenance – One security role structure across all applications

Deployment – Policy agents can be deployed to other applications

Performance - Achieved performance

Page 8: AEM & Identity Management (IDM) Integration

© 2013 Adobe Systems Incorporated. All Rights Reserved. Adobe Confidential.

Key implementation considerations

Where to offload

Agree Site IA

Whitelist dispatcher

Disable publish authentication

Ongoing maintenance

Page 9: AEM & Identity Management (IDM) Integration

© 2013 Adobe Systems Incorporated. All Rights Reserved. Adobe Confidential.

Questions

Page 10: AEM & Identity Management (IDM) Integration

© 2013 Adobe Systems Incorporated. All Rights Reserved. Adobe Confidential.

Page 11: AEM & Identity Management (IDM) Integration

© 2013 Adobe Systems Incorporated. All Rights Reserved. Adobe Confidential.

Tim WaringSENIOR CONSULTANT

Adobe

L27, Tower 2

201 Sussex Street

Sydney

NSW 2000

T0413 858 737

[email protected]


Identity and Context Virtualization The Key to Your IdM Architecture

Identity and Context Virtualization The Key to Your IdM Architecture

Documents
Identity Tracking: An Extension of Identity … Tracking: An Extension of Identity Management ... SAP IDM Driver ... Identity Tracking: An Extension of Identity Management | 8

Identity Tracking: An Extension of Identity … Tracking: An Extension of Identity Management ... SAP IDM Driver ... Identity Tracking: An Extension of Identity Management | 8

Documents
Identity Management (IDM) System Instructions for Medicaid

Identity Management (IDM) System Instructions for Medicaid

Documents
Identity Management (IdM) in ITU-T · International Telecommunication Union ITU-T Identity Management (IdM) in ITU-T Dick Brackney. Joint ITU-T, ... Ecosystem and Lexicon

Identity Management (IdM) in ITU-T · International Telecommunication Union ITU-T Identity Management (IdM) in ITU-T Dick Brackney. Joint ITU-T, ... Ecosystem and Lexicon

Documents
Identity Management - Password Reset Functionality Management - Password Reset Functionality Corporate Headquarters ... SAP NetWeaver Identity Management (IdM) is a tool used by Sun

Identity Management - Password Reset Functionality Management - Password Reset Functionality Corporate Headquarters ... SAP NetWeaver Identity Management (IdM) is a tool used by Sun

Documents
Identity Management · 2018-02-06 · “Identity management (IdM) describes the management of individual principals, their authentication, authorization, and privileges within or

Identity Management · 2018-02-06 · “Identity management (IdM) describes the management of individual principals, their authentication, authorization, and privileges within or

Documents
ProCurve Identity Driven Manager - Hewlett Packardh20628. · 1-5. About ProCurve Identity Driven Manager. Introduction. What’s New in IDM 2.3. ProCurve Identity Driven Manager version

ProCurve Identity Driven Manager - Hewlett Packardh20628. · 1-5. About ProCurve Identity Driven Manager. Introduction. What’s New in IDM 2.3. ProCurve Identity Driven Manager version

Documents
PIV Card based Identity Assurance in Sun Ray and IDM environment

PIV Card based Identity Assurance in Sun Ray and IDM environment

Business
Setting up Google as an Identity Provider · AEM Mobile: Setting up Google as an Identity Provider Requirement: Prerequisite knowledge • Understanding of AEM Mobile Required Products

Setting up Google as an Identity Provider · AEM Mobile: Setting up Google as an Identity Provider Requirement: Prerequisite knowledge • Understanding of AEM Mobile Required Products

Documents
THE IDENTITY-INFUSED ENTERPRISE: INTELLIGENT, CLOUD … · IDM key to cloud, on-premise control 2. Tools can help, with proper planning, people policy, processes 3. IDM intelligence

THE IDENTITY-INFUSED ENTERPRISE: INTELLIGENT, CLOUD … · IDM key to cloud, on-premise control 2. Tools can help, with proper planning, people policy, processes 3. IDM intelligence

Documents
The (IdM) Identity Conundrum Strategies in identity management

The (IdM) Identity Conundrum Strategies in identity management

Documents
The Most Important Question in Identity …lexisnexis.com/risk/downloads/idm/health-care-ID...Identity Management for Health Care Identity fraud is the fastest growing crime in the

The Most Important Question in Identity …lexisnexis.com/risk/downloads/idm/health-care-ID...Identity Management for Health Care Identity fraud is the fastest growing crime in the

Documents
Escape from the Identity crisis with FreeIPA Babej - FreeIPA.pdf · Identity Management What is Identity Management? “Identity management (IdM) describes the management of individual

Escape from the Identity crisis with FreeIPA Babej - FreeIPA.pdf · Identity Management What is Identity Management? “Identity management (IdM) describes the management of individual

Documents
Adobe Experience Manager (AEM)as.nyu.edu/content/.../documents/AEM_Implementation... · Adobe Experience Manager (AEM) ... Integration of NYU visual identity guidelines and standards,

Adobe Experience Manager (AEM)as.nyu.edu/content/.../documents/AEM_Implementation... · Adobe Experience Manager (AEM) ... Integration of NYU visual identity guidelines and standards,

Documents
Setting up Google as an Identity Provider · 2020. 5. 22. · AEM Mobile: Setting up Google as an Identity Provider Requirement: Prerequisite knowledge • Understanding of AEM Mobile

Setting up Google as an Identity Provider · 2020. 5. 22. · AEM Mobile: Setting up Google as an Identity Provider Requirement: Prerequisite knowledge • Understanding of AEM Mobile

Documents
Identity Management Infrastructure Protocols for …primelife.ercim.eu/images/stories/deliverables/d6.1.1-idm...Identity Management Infrastructure Protocols for ... (SAP), Gregory

Identity Management Infrastructure Protocols for …primelife.ercim.eu/images/stories/deliverables/d6.1.1-idm...Identity Management Infrastructure Protocols for ... (SAP), Gregory

Documents
ActivID Credential Management System - HID Global · 2017-07-18 · Identity Management Systems: IBM Tivoli Identity Manager, Novell Identity Assurance Solution, Oracle IDM, Sun Java

ActivID Credential Management System - HID Global · 2017-07-18 · Identity Management Systems: IBM Tivoli Identity Manager, Novell Identity Assurance Solution, Oracle IDM, Sun Java

Documents
ProCurve Identity Driven Manager - Hewlett Packardwhp-hou9.cold.extweb.hp.com/pub/networking/software/...IDM Architecture In IDM, when a user attempts to connect to the network through

ProCurve Identity Driven Manager - Hewlett Packardwhp-hou9.cold.extweb.hp.com/pub/networking/software/...IDM Architecture In IDM, when a user attempts to connect to the network through

Documents
Lead User Project - professors.wi.tum.de€¦ · „Identity Management“ (Neutral Intermediary“, „Special Comittment related to Identity transfer “ „IDM in the clinical

Lead User Project - professors.wi.tum.de€¦ · „Identity Management“ (Neutral Intermediary“, „Special Comittment related to Identity transfer “ „IDM in the clinical

Documents
IdenTity Manager (IDM) Migration · 2020. 7. 27. · IDENTITY MANAGER (IDM) MIGRATION Migrating from Account Center to IDM for PISGS user When an external user attempts to log into

IdenTity Manager (IDM) Migration · 2020. 7. 27. · IDENTITY MANAGER (IDM) MIGRATION Migrating from Account Center to IDM for PISGS user When an external user attempts to log into

Documents
Identity Management In Red Hat Enterprise Linuxpeople.redhat.com/mskinner/rhug/q1.2018/IDM-Talk-MinnesotaRHUG.pdf · 2 Identity Management in Red Hat Enterprise Linux Identity Management

Identity Management In Red Hat Enterprise Linuxpeople.redhat.com/mskinner/rhug/q1.2018/IDM-Talk-MinnesotaRHUG.pdf · 2 Identity Management in Red Hat Enterprise Linux Identity Management

Documents
Setting up Facebook as an Identity Service · AEM Mobile: Setting up Facebook as an Identity Provider Requirement: Prerequisite knowledge • Understanding of AEM Mobile Required

Setting up Facebook as an Identity Service · AEM Mobile: Setting up Facebook as an Identity Provider Requirement: Prerequisite knowledge • Understanding of AEM Mobile Required

Documents
Report of Focus Group on Identity Management (FG IdM)docbox.etsi.org/Workshop/2008/2008_SECURITYWORKSHOP/S6_3_S… · • a global analysis on IdM requirements and capabilities, •

Report of Focus Group on Identity Management (FG IdM)docbox.etsi.org/Workshop/2008/2008_SECURITYWORKSHOP/S6_3_S… · • a global analysis on IdM requirements and capabilities, •

Documents
ACS Identity and Access Management — AIM · PDF fileAccess and Identity Management — AIM ... Email: ACS.Helpdesk@xerox.com 10/5/2016 6:12 PM V1.0 Novell IDM 4.5 . ... Identity

ACS Identity and Access Management — AIM · PDF fileAccess and Identity Management — AIM ... Email: [email protected] 10/5/2016 6:12 PM V1.0 Novell IDM 4.5 . ... Identity

Documents
Release Notes - ForgeRock Identity Management 5 · •IDM 5.5.1.3 is the latest release, targeted for IDM 5.5 deployments and can be downloaded from the ForgeRock Backstage website

Release Notes - ForgeRock Identity Management 5 · •IDM 5.5.1.3 is the latest release, targeted for IDM 5.5 deployments and can be downloaded from the ForgeRock Backstage website

Documents
Take No Pretenders: Identity and Access Managementucop.edu/.../webinars/Identity-Access-Management.pdf · 07/10/2014  · – aka IDM, IdM or Identity Management • Purpose of IAM

Take No Pretenders: Identity and Access Managementucop.edu/.../webinars/Identity-Access-Management.pdf · 07/10/2014  · – aka IDM, IdM or Identity Management • Purpose of IAM

Documents
Leveraging Identity Management for Privacy, Security, and ...blogs.umass.edu/cmisra/files/2010/12/SecIdmNC09... · 7 Idm: definitions The Burton group defines Identity Management

Leveraging Identity Management for Privacy, Security, and ...blogs.umass.edu/cmisra/files/2010/12/SecIdmNC09... · 7 Idm: definitions The Burton group defines Identity Management

Documents
Identity Management based on FreeIPA · 2 What is an Identity Management System (IdM) An IdM system is a set of services and rules to manage the users of an organization It includes

Identity Management based on FreeIPA · 2 What is an Identity Management System (IdM) An IdM system is a set of services and rules to manage the users of an organization It includes

Documents
Identity Management (IDM) User Guide · 2021. 1. 12. · Identity Management (IDM) User Guide Version 1.0 01/07/2021 Document Number: IDM User Guide Version 1.0 Contract Number: HHSM-500-2017-00015I

Identity Management (IDM) User Guide · 2021. 1. 12. · Identity Management (IDM) User Guide Version 1.0 01/07/2021 Document Number: IDM User Guide Version 1.0 Contract Number: HHSM-500-2017-00015I

Documents
Selecting the Right Identity Governance Solution - …cticorp.com/wp-content/uploads/2013/06/Sailpoint-IdM-buyers-guide.pdf · Selecting the Right Identity Governance Solution:

Selecting the Right Identity Governance Solution - …cticorp.com/wp-content/uploads/2013/06/Sailpoint-IdM-buyers-guide.pdf · Selecting the Right Identity Governance Solution:

Documents