Business Intelligence Hampered by a Lack of Clear Role Management

A top 70 national university uses an enterprise-level solution to report on important university-wide research data and business intelligence. Access to this data is managed by roles across a multitude of schools within the university, but the lack of role management across the university was limiting access and use. To complicate things, the various stakeholders were initially reluctant to adopt a university-wide role framework or standard policy for provisioning and de-provisioning. In short: identity and access management (IAM) were inefficient and disjointed. Our team developed and implemented a phased approach to implement role-based access control (RBAC) framework to upgrade its … Read More

Thank you for joining the 2020 work-from-home experiment (whether you wanted to or not)

work from home experiment made easier with help from M&S Consulting

You already know the situation we’re in: we have all been plunged into the world’s largest work-from-home (WFH) experiment with very little time to adapt. This grand experiment has changed the rules for almost every working situation. Workers and companies that already had the ability for effective remote work are finding new challenges, now that seemingly everyone has joined the party. We have been refining the way our company works remotely since we began in 2002. Knowing how to get started, what’s important, and having the ability to reduce friction for your workforce will help you navigate through this time … Read More

Taking Advantage of Our Higher Education AWS Standard Plays (Begin Your Journey to the Cloud)

M&S helps direct you on your journey to the cloud

Is your institution moving to the cloud? Are you adopting a cloud strategy, such as Cloud First, where the institution takes the plunge and jumps in with both feet, or perhaps an Opportunistic Cloud or Experimental Cloud strategy where they test the waters with select projects? Perhaps your institution has instead elected to stay out of the cloud entirely and to simply watch from a distance. Each of these strategies can be appropriate in the right context, but adopting a cloud strategy that works for your institution should be a priority. With any of these strategies, you need to ensure … Read More

On-Premises Identity & Access Management – Vendor + Product + Feature Matrix

Security keyboard button

As with any packaged, on-premises suite, finding the best Identity Management products for your enterprise is a not a trivial task. This is especially true when different products from different vendors, that accomplish different objectives or services, have remarkably similar (and therefore confusing) naming conventions. To make matters worse, not unlike other COTS enterprise suites, the ‘cloudification’ of these products has begun and many vendors have started to offer a version of these products as a PaaS or SaaS offering. Additionally, many of these vendors also offer an IaaS type deployment of these packaged products in their on-prem form. M&S has … Read More

Identity & Access Management – Vendor & Product Matrix

As with any packaged suite, finding the best Identity Management products for your enterprise is a not a trivial task. This is especially true when different products from different vendors, that accomplish different objectives or services have remarkably similar (and therefore confusing) naming conventions. To help layout the current Identity Management vendor / product landscape as we see it, we’ve put together the following matrix of products by vendors. Service Identity Governance User Life Cycle, Self-Service, Request / Role Based, Provisioning & Deprovisioning, Password Management, Attestation & Compliance / Separation of Duties Oracle Identity Manager IBM® Security Identity Manager CA … Read More

Oracle Identity Management 11gR1 vs. 11gR2 Packages

Many of our customers get hung up on the release cycles, version numbers, and included products of Oracle’s Identity Management offerings. Following is a quick breakdown of the latest versions of Oracle’s Identity Management products included in both 11gR1 and 11gR2 organized as the downloadable software packages. Most of Oracle’s Identity Management products can be licensed as either a part of a suite or individually, however, some can only be licensed individually. The packages have changed significantly between 11gR1 and 11gR2 and some 11gR2 licensing suites include 11gR1 products….confused yet? Don’t worry, we can help. Let’s Talk. Oracle Identity Management … Read More

Identity Management: From Oracle 10g to 11g – IdM, SSO, OAM

I have been running Oracle Identity Management 10g with heavy use of 10g SSO capabilities. Much of our web security architecture along with application authentication relies on this infrastructure. What do I do as development begins to shift from OracleAS to WebLogic, and our middleware stack goes from 10g to 11g? We will need to run 10g and 11g in production side-by-side for some period of time. This is a question many of our customers are asking and it is understandable that there is confusion around this. Oracle hasn’t provided the clearest of answers, and in general, identity management initiatives … Read More

Print REMOTE_USER CGI Variable in JSP on WebLogic 11g

There could be a number of reasons you want to verify the value of the REMOTE_USER variable in an app you are running in WebLogic. A quick way to check is by dropping in a JSP file that prints the value: <html> <body> REMOTE_USER: <%= request.getRemoteUser() %> </body> </html><html> <body> REMOTE_USER: <%= request.getRemoteUser() %> </body> </html>