Resources & Bibliography

Project Planning, Preparation, & Requirements

Articles

Directory Services: The Foundation for Web Portals (PDF) by Albert DeSimone discusses the importance of directory services to web portal implementations. This document may assist in making the business case for directory services, if a portal implementation is the main driver.

Identity and Access Management and Security in Higher Education (PDF) demonstrates how core middleware - including enterprise directories - addresses security and access management issues within an institution.

The Middleware Connection (PDF) offers a short business case and information about middleware tailored to your institution's financial and business officers.

Sample Middleware Business Case (PDF) is a sample business case written by the Internet2 Early Adopters Project Participants.

Sample Middleware Business Case: Writer's Guide (PDF) is the accompanying guide to help institutions understand and develop their own case.

Gaining the President’s Support for IT Initiatives at Small Colleges (PDF) helps IT project managers, directors, and CIOs present sound and coherent business cases to their upper administration.

Beyond Bandwidth... (PDF) provides an interesting perspective on the next challenges of our growing reliance on global networked computing.

Directory Services: The Foundation for Web Portals (PDF) discusses the importance of directory services to web portal implementations.

Identity and Access Management and Security in Higher Education (PDF) provides an overview of identity, access, and security issues, along with other aspects involved with implementing these important infrastructures; includes next steps for campuses.

On Beyond Z: Building a Directory Service (PDF) by Paula J. Vaughan, Deborah Keyek-Franssen, and Marin Stanek, EDUCAUSE Quarterly, volume 25, number 4, 2002.

 

Documents

University of Florida's proposal for Enterprise Directory Services (PDF) is an example of a business case/white-paper, which UFL used to make a case for their middleware infrastructure.

Identity Management Project Readiness Self-Assessment Checksheet (PDF) assessment is intended to identify factors at your school that other campuses have found to be important in their Identity Management projects.

Middleware: Addressing the Top IT Issues on Campus (PDF) provides background and rationale for middleware deployments as critical new infrastructures.

Middleware: The New Frontier (PDF) describes why middleware is important to the national research and engineering agenda and the National Science Foundation.

Slide presentations
"Introduction to Middleware" (PDF) (PPT) slide presentation can be used to explain what enterprise middleware is and why it's important.

 

Directory Architecture Design & Initial Policy Development

Documents

For general information on middleware components, see Identifiers, Authentication, and Directories: Best Practices for Higher Education.

A Recipe for Configuring and Operating LDAP Directories outlines specific practices for directory design in the higher education sector.

For a list of the types of possible identifiers used in source, person registry, consumer, and application services, see the Identity and Name Space Considerations (PPT).

Practices in Directory Groups offers ideas and methodologies for managing groups in directories, which is - for many campuses - entry-level authorization.

For more information on identifiers within the context of core middleware, refer to Identifiers, Authentication, and Directories: Best Practices for Higher Education.

For a more in depth explanation of identifiers and a list of questions to use in doing a campus inventory, see the Internet2 Identifiers page.

Sample core principles for an enterprise directory are listed on Strategies: Core Principles.

See these diagrams for simple and more robust examples of how to structure a systems infrastructure to support middleware.

To review other campus mappings and a sample template, go to the Early Adopters Identifier Mappings page.

Directory Schemas

eduPerson Object Class and eduOrg Object Class: accompanying LDIF files offers a directory person schema and a directory organization schema that, once installed, can be leveraged to serve inter-campus applications.

eduCourse offers guidance for institutions interested in expressing course and course components in an LDAP directory.

eduMember offers a way to express groups in an LDAP directory.

Data Flow & Business Process Review: Continue Policy Development

Documents

To address ongoing governance issues associated with the directory use, campuses should consider establishing an oversight function. See Enterprise Directory Oversight Process.

For further information on the functions of metadirectories and implementation guidelines, see Metadirectory Practices for Enterprise Directories in Higher Education.

For further information on the "join" process of metadirectories, see Metadirectory Practices for Enterprise Directories in Higher Education.

For additional information on person registries, see Identifiers, Authentication, and Directories: Best Practices for Higher Education.

For further information on populating directories, see Metadirectory Practices for Enterprise Directories in Higher Education.

Practices in Directory Groups offers ideas and methodologies for managing application groups in directories.

The Local Domain Person Object Class Study summarizes the results from a survey of institutions and the institution-specific attributes, which they have added to their directory.

 

Directory & Applications: Implementation & Deployment

Documents

A sample oversight document was developed to assist campuses in establishing this function. See the Enterprise Directory Oversight Process.

University of Wisconsin-Madison has a well-developed LDAP requirements list that they include in the RFPs to vendors.

 

Tools

LDAP operational ORCA "k"ollector (Look © ) is a Perl utility that gathers LDAP performance data at periodic intervals, and generates a file of summary results in a format compatible with the open-source ORCA web graphing product.

To check your directory schema and design against current higher education practices outlined in the LDAP Recipe and popular schemas, such as eduPerson Object Class, use the LDAP Analyzer.

 

Bookmark & Print VersionGraphic Version