K 12 Identity Based Storage Management Identity Based

K 12 Identity Based Storage Management Identity Based Collaborative Learning Solution

Agenda • Introduction to Condrey Consulting Corporation • Identity Based Storage Management • • Provision – Create, Manage & Clean Up Access – Web Based Access & Management Audit - Who is Accessing Servers and Storage Secure – What Rights do they have to storage • Components of Identity Based Collaborative Learning Solution • Live Demo • Q&A

Condrey Consulting Corporation Company Overview • David Condrey – Owner and CEO • US Software Engineering Corporation based in Greenville, SC • Customers in 33 countries representing Commercial, Fortune 1000, State & Federal Government, Military, Healthcare, Higher-Ed and K 12 • Well known and respected by customers, especially in the academic market • Well known at Novell – Model Partner • Invested in the future of Novell

Condrey Consulting Products Overview • File System Factory™ – Novell Nsure - Novell Price List - SLA • Provision, Manage, Cleanup • Identity Based Storage Management • Lifecycle Content and Data Management (e. Portfolio) • IUAdmin™ - Web Based Access and Management • Policy Based Personal and Collaborative Storage Access • Web Based Access to Personal and Group Content • Web Based Help Desk Administration • Web Based User Self-Service and Password Reset • Audit. Login™ and Trust. Fun • Who’s Accessing Storage and What Rights Do They Have? - Login/Logout - Date, Time, Workstation - Trend Reports and Graphs - File and Directory Rights Analysis

File System Factory Education Customers • University of Kentucky – 43, 000 users • Northern Illinois University – 67, 000 users • Minnesota State Colleges and Universities – 93, 000 users • Charleston County Schools, SC – 42, 000 users • University of Georgia – 60, 000 users • Embry Riddle University – 12, 000 users • Hemet School District, Los Angeles • Grand Rapids Community College • Savannah Chatham County Schools, Georgia • Douglas County Schools, Georgia • Newton County Schools, Georgia

More File System Education Customers • Northwestern Michigan University • Old Dominion University • Madison Area Technical College • Waukesha County Technical College • Blackhawk PA School District • Marysville Village Schools • Spearfish School District • Maine Township High School District • Waubonsee Community College • Western Illinois Univeristy • Escondido Union High School District • Sutton Public Schools • Ramaz School • Augsburg College • Southwestern Community District No. 9 • Le Moyne College • Macon County R-1 • Grant Mac. Ewan College • Clemson University • Community Consolidated School District – Illinois • Ramaz School • Augsburg College

Sample of Education Customers Leveraging File System Factory, IUAdmin and Audit. Login

Digital Portfolio’s • The “Digital Portfolio" is a strategy that has gained widespread acceptance in the education field • Digital portfolios make it easier to track a student's progress and work over the years. • Allows students to store their material in digital format on a server to be reviewed by team members. • The portfolio contains samples of significant student work over time and should be available to the student throughout their school career, making it easier for teachers to access student work and thus track performance. • Digital portfolios are useful when applying to post-high school institutions or moving into careers in the private sector. • Digital Identity is key

NCLB and e. Portfolio Links • http: //www. kn. pacbell. com/news/CAschools/sas. html • http: //www. southalabama. edu/tomorrowsteachers/portfolios. html • http: //schools. nycenet. edu/d 75/instructionalservices/assessment/ altassessment/datafolio. html • http: //www. pupilpages. com/ • http: //www. mandia. com/kelly/portfolio. htm

Components of K 12 Identity Based Collaborative Learning Solution

Components of K 12 Identity Based Storage Management Solution • Novell e. Directory – Foundation • Novell File System Factory – Identity Based Personal and Collaborative Storage – Lifecycle Content and Data Management (e. Portfolio) – Creation, Migration and Graduation Policies • IUAdmin – – Web based access to personal and collaborative content User Self-Service and Help Desk Self Service Password Reset Contextless Login Access • Audit. Login and Trust. Fun • Who’s logging in and accessing data • What rights do they have?

Digital Identities The key to student and faculty collaboration

Novell e. Directory Stores information about people, services, and resources Manages relationships between them Directs interactions and triggers events

Provision, Manage, Clean Up Novell File System Factory

Novell File System Factory – The Challenge Do you give all your users home directories? • If you do, how do you manage the disk space? • Do you evenly distribute the disk space? Criteria? • How do you manage growth? If you do give your users home directories, how do you clean them up? How extensible is it? Do you give ALL your groups of users collaborative storage space? • • Faculty and Administrators: All working groups? Students: All sections of all classes? Do you evenly distribute the disk space? How do you manage growth? Cleanup?

Creating and Managing e. Directory Users and Groups ® App LDIF LDAP SIF IDM Datafile UIMPORT Custom or 3 rd Party e. Directory

A New Philosophy Point your tree… …at your disk… …and be done with it.

Novell File System Factory Automatic Disk Space for all Students and Staff!

Novell File System Factory Automatic Disk Space for each Class and Work Group!

Novell File System Factory Automated Home Directory Management: Create It, Manage It, and most importantly… Clean It Up!

Novell File System Factory Lifecycle Data and e. Portfolio Management: Create It Move It Manage It

Novell File System Factory All you have to do is create the users and groups… …Any way you want… …We’ll handle the rest!

Provision Storage as well as Accounts with Novell File System Factory and Identity Management ZENworks for Desktops ZIS Border. Manager Identity Mgr SIF Driver e. Directory Active Directory Identity Mgr AD Driver Net. Mail FSF LINUX • Policy-based • Event-driven Net. Ware • Load balancing High School 25 MB Net. Ware • Storage creation • Storage management • Storage cleanup • Personal user storage • Group storage Middle School 10 MB

FSF Methodology New workflow component allows employee’s manager to review, reassign, or vault user data prior to deletion. Algorithm: Random Balance Rights: RWCEMFA Quota: 150 MB Template: SERV 1/VOL 1: Policies Del. Wait: 90 Days SCSD ES MS • Create • Rename • Delete Policy HS BJones BSmith Copy SERV 1/VOL 1: POLICIES Target File Systems RWCEMFA BSmith BJones 150 MB

Policy Assignment & Data Migration Jefferson Employee Students Other Sunshine Elem Lincoln Middle Riverside High BSmith • Seamless BSmith • Fault-tolerant • Safe Scheduler – 9: 00 PM Policy BSmith 25 MB Policy BSmith 50 MB

Education Group Policy Example Assign Policy to Courses Container Algorithm: Random Balance Rights: none Quota: 500 MB Template: SERV 1/VOL 1: Group. Sample Del. Wait: Never Jefferson Courses Create Course Group Object Employee Student Policy Target File Systems SPAN 340 -001 Automatically Create Group Storage and Assign Policies Copy Course Files for Each Student from Template Copy SERV 1/VOL 1: Group. Sample SPAN 340 -001 150 MB

Group Policy Templates Configuration Steps Create Group Object SPAN 340 -001. MS. COURSES. STATEU Create FSF Group Policy Using the FSF Management Interface Create e. Dir Objects Create Template Assign Rights to Directories Assign Members & Owners to the Group

Group Policy Templates Assign Students as Members and Instructors as Owners Members Owners JSmith. Students. STATEU ABelcher. Staff. STATEU MRoberts. Students. STATEU KAlesanto. Staff. STATEU NFrost. Students. STATEU PJones. Students. STATEU RBrooks. Students. STATEU SSmith. Students. STATEU STimms. Students. STATEU TJones. Students. STATEU TSmythe. Students. STATEU WClark. Students. STATEU

Group Policy Templates File System Factory Automatically Provisions Storage for Students and Instructors

Northern Illinois University Data Migration - Backfill NIU Faculty Students Other BSmith RJones KJackson Admin issues Backfill with “Enforce Policy Paths” option, which will move data. RJones KJackson RCroom NCS DWyatt Pentium Pro 200’s – 0 Users 67, 672 Users Policy RJones BSmith KJackson RCroom BSmith RCroom DWyatt

Where’s my stuff? Users need an easy way to find their storage …even if you need to move it. Personal Storage and Group Storage. Map a Drive? There’s only so many letters in the alphabet. Login Script Management is a headache for group storage.

URAccess End-User tool for dynamically building personalized access links to storage. Leverages Home_Directory user attribute for personal storage. Leverages ccc. FSFactory. Homedir group attribute for shared storage. Creates a local set of UNC paths and description presented to the user in a Windows UI. Like App-Launcher for ZENworks, except provides access to storage. List can be refreshed at any time. Supports multiple tree connections.

URAccess

Executive and Admin Dashboards

Executive Storage Dashboard Storage Trends on User and Group Policies

Administrative Storage Dashboard Event Statistics Storage Health Check https: //your. server. name. or. ip. address: 8009/FSF/HTTP_FSFExecutive. Dashboard.

Web Based Quota Manager

Web Based Quota Manager Policy Configuration

Quota Manager – Help Desk Interface https: //your. server. name. or. ip. address: 8009/FSF/HTTP_FSFQuota. Mgr

Quota Manager – Help Desk Interface Green = space available > 25% of quota Yellow = space available < 25% of quota Red = space available < 10% of quota

Quota Manager – Help Desk Interface

Web Based File Rights Analysis

File System Rights Analysis

Rights Analysis OWNERS MEMBERS

Employee Data Manager - Workflow

Novell e. Guide Manager

Workflow Configuration

Employee Data Manager Interface

What are the requirements? NDS/e. Dir Any Novell supported version of NDS® or e. Directory (6. xx, 7. xx, 85. xx, 8. 6. x, 8. 7. x) FSF_Event Net. Ware 5. 1 SP 6 or later Net. Ware 6. 0 SP 4 or later Net. Ware 6. 5 or later FSF_Engine Net. Ware 6. 0 SP 4 or later Net. Ware 6. 5 or later Net. Ware 4. x SP 9 or later 5. 0 SP 6 a or later 5. 1 SP 6 or later 6. 0 SP 4 or later 6. 5 or later

Coming up Next File System Factory for: Microsoft Active Directory Linux

Web Based Access and Management Internet User Administrator IUAdmin™

IUAdmin™ Intruder Lockout Grace Logins Login Disabled Account Expired • Web Based Access to Netware Personal Storage and e. Portfolio Managed by File System Factory Policies • Web Based Access to Collaborative Group Storage Managed by File System Factory Policies • Integrate with Novell Extend Portal, Netware 6. 5 Virtual Office Portal and Novell i. Chain • User Self Service • Self-Service Password Reset • Let Users Optionally fix their own problems • Help Desk Administration • Location and Departmental based Help Desk • Help Desk Group Management • User Help Indicators Identify Account Problems

IUAdmin™ User Self Service Personal And Group Storage Access Help Desk Personal Storage Group Storage e. Portfolio Managed By File System Factory Events & Policies

Help Desk Dashboard

IUAdmin™ Architecture • Built on top of Novell’s HTTPSTK. . no webserver to install or configure. • Contextless Login • SSL connections for security. • No schema extensions. However optional extensions are provided for increased functionality. • Runs on Netware 5. 1 or above with any version of e. Directory. Other products provide Management Paks that plug in to the architecture. User Self Service File System Access File System Factory Help Desk IUAdmin Core Architecture File System Mgt Resource Mgt Audit. Login e. Portfolio Trustfun

No More Floppy Drive Headaches • Virus’s • Limited Space • Drive Failures • Management Nightmare Solution File System Factory IUAdmin

Security - Audit Access & Rights Analysis Audit. Login Trust. Fun

Audit. Login - Log File Report

Audit. Login Graph

Trust. Fun - Rights and Trustee Analysis Win 32 Application

Trust. Fun Report

Trustee Assignment Detail

Identity Based Collaborative Learning Group. Wise® e. Directory™ ZENWorks™ Net. Mail File System Factory™ UIMPORT LDAP IDM Console One Faculty Students Novell Border. Manager File System Access Help Desk Self Service Password Reset IUAdmin™ Audit. Login™ Policy Based Storage • Home Directory • Virtual Classroom Storage • Team Storage • Student e. Portfolio • Lifecylcle Management Storage Access Reports & Graphs Product Licenses Novell SLA • File System Factory™ Condrey Consulting • IUAdmin™ • Audit. Login™, Trust. Fun

Grade Promotion Policy Production Tree IUAdmin Novell Border. Manager HS 1 HD EP FSF MS 1 Student Locker Grade Promotion e. Directory Home Directory e. Portfolio IDM UIMPORT LDAP Custom or 3 rd Party Console One Class Storage

Graduation Policy Production Tree SCSD DIST Graduated HS 1 SMS IUAdmin™ STUDENTS HD Novell Border. Manager EP FSF Graduation Student Locker e. Directory IUAdmin™ e. Portfolio EP IDM UIMPORT LDAP Custom or 3 rd Party Console One

Solution Benefits Students IT Departments • Personalized Student Content • Reduced help desk support costs • Lifecycle Data Management • Reduced time needed to manage personal and group storage • Web Based Access to resources and lesson assignments • Self Password Reset • Leverage existing systems and infrastructure – No upgrades Teachers Administrators • Web based access to resources and data • Team Collaboration with students and teachers • Web based access to resources and data • Teacher e. Portfolio • User Self Service • Self User Self Service • Minimal cost with large return

Novell Nsure Case Study: Charleston County School District 1 Customer Situation • 42, 000 students & 6000 faculty and staff • Constant student turnover • Identities duplicated in multiple applications • Needed to reduce cost and time associated with student account management. • Life-Cycle student and collaborative file system management • Based on SIF Standards 2 Approach • Discovery and Requirements Assessment • Establish an authoritative source for identity information • Create a directory- based provisioning framework • Implement Identity Based Storage Management 3 Business Results • Automated Provisioning for Student Identities • Life-Cycle student and collaborative storage • Secure Access Portal for faculty. • Personalized delivery of information to faculty.

DEMO • File System Factory – – – • IUAdmin – – – • Create Policy – Students and Faculty Promotion and Move Policy Graduation and Termination Policy Course and Group Policies – Business Ed Example URAccess – Access to Group Storage – No Drive Mappings Web based access to files for Students and Faculty Provision Student and Faculty Web Pages Contextless Login – Self Service Password Management – Help Desk Audit. Login and Trust. Fun – Login Auditing and Rights Analysis

Q&A

Technical Overview File System Factory

Global Event Subsystem and Transaction Tracking A B C FSF_Event DB FSF_Engine

The State Machine Architecture “Neither rain, nor snow, nor sleet, nor gloom of delayed DS synchronization shall stay this system from the swift (or eventual) completion of its appointed tasks…” DS is replicated. Servers go down for maintenance or other reasons. Routers die. Fiber is dug up on occasion. …That’s real life.

The State Machine Architecture Server R 1 Server R 2 Server R 3 SALES. ACME FSF-EVENT Event: Add. User Server Z Server E FSF-ENGINE +RWEMFA

Actions and States Add User #define FSF_ACTION_NEW_USER 4000 #define #define #define #define FSF_ACTION_NEW_USER_STATUS_WAIT_TO_SEE 4010 FSF_ACTION_NEW_USER_STATUS_WAIT_FOR_POLICY 4013 FSF_ACTION_NEW_USER_STATUS_GET_POLICY 4016 FSF_ACTION_NEW_USER_STATUS_WAIT_FOR_PATHS 4018 FSF_ACTION_NEW_USER_STATUS_PICK_LOCATION 4020 FSF_ACTION_NEW_USER_STATUS_NO_PATHS 4021 FSF_ACTION_NEW_USER_STATUS_CREATE_DIRECTORY 4030 FSF_ACTION_NEW_USER_STATUS_SET_OWNER 4035 FSF_ACTION_NEW_USER_STATUS_APPLY_TRUSTEE 4040 FSF_ACTION_NEW_USER_STATUS_SET_QUOTA 4050 FSF_ACTION_NEW_USER_STATUS_COPY_TEMPLATE 4060 FSF_ACTION_NEW_USER_STATUS_SET_HOMEDIR_ATTRIBUTE 4070 FSF_ACTION_NEW_USER_STATUS_SET_MESSAGE_SERVER_ATTRIBUTE 4075 FSF_ACTION_NEW_USER_STATUS_USER_EXIT 4080 FSF_ACTION_NEW_USER_STATUS_NORMAL 4090

State and the Process Queue Server R 1 Server R 2 Transaction # Event Type Status State FSF-EVENT FDN Object. Created Server E Event. Triggered Target. Path Object. Deleted … FSF-ENGINE