Smart Cards Speed Up Just-in-Time Provisioning

Jimmy LutzIdentity & Access Management, Offerings, Problem Solved, Technical TipsLeave a Comment

A large government organization hosts a common services platform for thousands of users. Their user provisioning process required manual intervention, which took time and was susceptible to error. With hundreds of thousands of users, this time and exposure to error added up. Our team optimized the user provisioning process by designing and implementing a just-in-time (JIT) provisioning solution. However, instead of relying on SSO and SAML assertions, our solution grabs the required information from the user’s two-factor authentication source, their smart card. In this way, users are automatically provisioned to the web applications as they attempt to access them, instead … Read More

Managing a Complex Migration to Oracle Cloud

Jimmy LutzCloud and Virtualization, Identity & Access Management, Oracle, Problem SolvedLeave a Comment

A publicly-traded company dealing with health information planned to migrate their primary business application suite to Oracle Cloud Infrastructure (OCI), including Fusion Middleware components (SOA, IdAM, EDQ). The initial challenge was the number of interconnections between applications (over 70), each with complex security requirements. If the various components of the migration were not carefully timed and coordinated, the availability of critical business functions could be affected. To make it more challenging, the migration needed to be transparent to the business owners and thousands of users, with minimal downtime during cutover. Our combined team, in close collaboration with the customer, performed … Read More

Business Intelligence Hampered by a Lack of Clear Role Management

Jimmy LutzBig Data & BI, Business Strategy, Cloud and Virtualization, Higher Education, Identity & Access Management, Industry Trends, Problem SolvedLeave a Comment

A top 70 national university uses an enterprise-level solution to report on important university-wide research data and business intelligence. Access to this data is managed by roles across a multitude of schools within the university, but the lack of role management across the university was limiting access and use. To complicate things, the various stakeholders were initially reluctant to adopt a university-wide role framework or standard policy for provisioning and de-provisioning. In short: identity and access management (IAM) were inefficient and disjointed. Our team developed and implemented a phased approach to implement role-based access control (RBAC) framework to upgrade its … Read More

Cloud POC Demonstrates value to government agency

Jimmy LutzCloud and Virtualization, Identity & Access Management, Oracle, Problem SolvedLeave a Comment

A large government organization intended to use Oracle User Productivity Kit to create and publish training material. Unfortunately, the original procurement did not obtain the necessary hardware resources. After collecting requirements and working with cloud providers, our team was able to obtain operating credits for a proof of concept (POC) that would enable all required functionality and security. The POC was also able to deliver additional functionality, including single sign-on, virtual desktop infrastructure, and shared storage. We were able to demonstrate not only the effectiveness of a cloud architecture but also the reduction in implementation and maintenance costs. If you’d … Read More

Thank you for joining the 2020 work-from-home experiment (whether you wanted to or not)

Brandon JonesBusiness Strategy, Cloud and Virtualization, Identity & Access Management, Industry Trends, OfferingsLeave a Comment

work from home experiment made easier with help from M&S Consulting

You already know the situation we’re in: we have all been plunged into the world’s largest work-from-home (WFH) experiment with very little time to adapt. This grand experiment has changed the rules for almost every working situation. Workers and companies that already had the ability for effective remote work are finding new challenges, now that seemingly everyone has joined the party. We have been refining the way our company works remotely since we began in 2002. Knowing how to get started, what’s important, and having the ability to reduce friction for your workforce will help you navigate through this time … Read More

Taking Advantage of Our Higher Education AWS Standard Plays (Begin Your Journey to the Cloud)

Brandon JonesBusiness Strategy, Cloud and Virtualization, Higher Education, Identity & Access Management, News and Updates, OfferingsLeave a Comment

M&S helps direct you on your journey to the cloud

Is your institution moving to the cloud? Are you adopting a cloud strategy, such as Cloud First, where the institution takes the plunge and jumps in with both feet, or perhaps an Opportunistic Cloud or Experimental Cloud strategy where they test the waters with select projects? Perhaps your institution has instead elected to stay out of the cloud entirely and to simply watch from a distance. Each of these strategies can be appropriate in the right context, but adopting a cloud strategy that works for your institution should be a priority. With any of these strategies, you need to ensure … Read More

Federated SSO, A Primer (SAML, OAuth 2.0, OpenID Connect)

Stefan ApostolukIdentity & Access Management2 Comments

Federated single sign-on (or SSO) is a modern way to solve the problem of having multiple logins between different services and applications. Let’s take a look at three of today’s common federated identity protocols: SAML, OAuth 2.0, and OpenID Connect. SAML The first of the authentication methods that I’d like to talk about today is SAML, which stands for Security Assertion Markup Language. SAML is the oldest of the free main federated identity protocols, with its last major revision in 2005. There are three major players in SAML – the user, the Identity Provider (or IdP) that authenticates the user, … Read More

10g OSSO to 11g WebCenter Portal External Applications Migration

Alex PingleyIdentity & Access Management, OracleLeave a Comment

Oracle 10g to 11g diagram

We recently had a customer who undertook an Oracle Portal 10g to Oracle WebCenter 11g upgrade and ran into an issue with their External Applications and users. To give some context to the problem, there is a direct correlation between an Oracle 10g OSSO and Oracle 11g Webcenter portal for external applications but no way of migrating users from one to the other. Migrating from one system to another is never easy, and in this instance there was no mechanism to even begin the migration apart from manual migration of the data. This simply was not an option for the … Read More