par janua | Avr 15, 2015 | Developpement, Gestion des Identités
OpenIDM and Google Apps new API : a few months ago, Google announced that as of April 20, 2015 the Provisioning API, among others, will be discontinued and replaced by the Admin SDK API. Since the deprecation period for these APIs is coming to an end, the Google...
par janua | Mar 30, 2015 | Communauté, Gestion des Identités, Open Source, Sécurité, SSO
OpenAM 12 tricks: I recently had to find a solution built on OpenAM where the business requirements were to be able to display a form to end users accessing a SAML SP (among several) for the first time, in order to let them make a choice upon which SAML assertions...
par janua | Fév 5, 2015 | Communauté, Gestion des Identités, Open Source, Sécurité, SSO
OpenAM security is a serious matter, especially when this software has a critical role in your architecture, which is often the case. So here are some advices to avoid OpenAM security holes. 1 – OpenAM lower layers security To avoid security flaws in your OpenAM...
par janua | Jan 9, 2015 | Communauté, Developpement, Gestion des Identités, Sécurité, SSO
OpenAM Custom Password Generator : I told you in a previous post about the OpenLDAP Password Policy Module which allows defining the password complexity rules by configuring an external file. OpenAM-CPG is an OpenAM reset password plugin using the same configuration...
par janua | Jan 6, 2015 | Communauté, Developpement, LDAP, Open Source, Produit
OpenLDAP Password Policy Module: the password policy overlay in OpenLDAP provides the option for calling an external module to check the passwords complexity requirements. We modified this custom module in order to implement Active Directory compatibility. This open...
par janua | Jan 5, 2015 | Gestion des Identités, LDAP, Provisioning
How to trace and debug LDAP connections against Active Directory ? Used to operate traditionnal directory servers (OpenDJ, OpenLDAP, DSEE,…) and its tools, Janua’s consultants are a little frustated when working on identity management projects involving...
par janua | Déc 30, 2014 | Developpement, LDAP, Open Source, Produit
White Pages by Janua offers an highly customizable, easy to configure and deploy web interface/web app. White Pages by Janua allows users to access an LDAP directory from a desktop computer, a laptop, or even from a tablet or smartphone. It can also be incorporated on...
par janua | Nov 7, 2014 | Gestion des Identités, SSO
OpenAM as an OAuth 2.0 authorization server: in part 1, we saw how to get an authorization code. Here, we’ll see how to use it. Actually, the OAuth 2.0 RFC provides a single type of usage, but I discovered that with OpenAM 11.0, the code could be used in a...
par janua | Nov 6, 2014 | Gestion des Identités
I recently wrote a few scripts to test OpenAM REST and OAuth 2.0 endpoints, in a somewhat usual environment where OpenAM is hidden behind a reverse proxy where an OpenAM agent enforces some URL policies. Some details are worth noticing so I decided to start this...
par janua | Oct 31, 2014 | Developpement, Gestion des Identités, LDAP, Produit
LDIF and freeDataMap – FreeDataMap helps you manipulate, vizualize, explore and transform LDIF datas from any LDAP directory. FreeDatamap provides a unique way to browse any kind of data. It is a web application that provides the possibility to navigate into...
par janua | Oct 17, 2014 | Communauté, LDAP, Open Source
A new security issue hit the streets this week: the Poodle SSL bug. While the vulnerability is mostly triggered by the client, it’s also possible to prevent attack by disabling the use of SSLv3 all together on the server side, eg. OpenDJ. from Ludovic Poitou blog...
par janua | Oct 3, 2014 | Communauté, Gestion des Identités, SSO
If you have ever listed the OpenAM Subversion repository content, you would have noticed that it contains a lot of projects with confusing names, especially if you are looking for a specific Web or J2EE Agent version to build. First of all, let’s take a look at...
par janua | Sep 25, 2014 | Gestion des Identités, Provisioning, Sécurité
In a production environment, enabling SSL between OpenIDM and .NET Connector Server is highly recommended. To do so, we configure SSL on both sides as following : 1 ) .Net Connector Server side – Enable SSL by editing ConnectorServer.exe.config file : <add...
par janua | Août 28, 2014 | Gestion des Identités, Produit, SSO
I participated in an interesting thread today, on the OpenAM mailing list. It was about setting up an OpenAM site when the OpenAM servers are already configured and independant, but not sharing anything (that is no common session or configuration store between the...
par janua | Août 28, 2014 | Gestion des Identités, Produit, Provisioning
I recently had to migrate an OpenIDM 2.1 projet to version 3.0. I mostly worked on pre-released 3.0 versions, and it was the opportunity for some documentation and bug reports. Now that OpenIDM 3.0 final is released, paths to migrate are clearer, in spite...
