Tired of Toein' the OpenSSO 8.0 Technical Overview

I've been in major crunch mode recently - writing the documentation that will be released with Sun OpenSSO Enterprise 8.0. Unfortunately, that doesn't leave much time for blogging. Well just to let you know that I am still here, the Technical Overview is just about 96% finished. (I used a mathematical formula to get that percentage.) It has been posted to the OpenSSO EA Doc Page; check it out as well as the other not-ready-for-prime-time guides to understanding and using OpenSSO.

If you have any comments/issues with anything you read in the Technical Overview (or any of the EA docs) leave your comments below or just email users@opensso.dev.java.net. I'll make sure the correct writer gets the information. Thanks in advance.

Currently I'm working with engineer extraordinaire Anant on the update of a deployment example in which there are procedures for installing, configuring and/or implementing OpenSSO, Directory Server, web containers, policy agents, load balancers and session failover. Look for an EA version of this on the OpenSSO EA Doc Page next week.

Following the culmination of that book, I'll be working with yet another extraordinary engineer, Wei, on a deployment example for implementing federation and SAMLv2 communications. That won't be up before next month but I can see you're salivating now. We'll hurry it up.

In the meantime, check out Rocky Burnette's hit from 1980, because sometimes we all get Tired of Toein' the Line.

Recognize me without the red glasses? I still wear them sometimes.

Oh vez mear. Time flies when having fun!

Comments:

Looking through what is posted at the EA doc link, I'd like to comment on a few things, all relating to Load Blancing.

1) In the Admin Guide (and I would think at first it would be in the Install/Config Guide), the How to setup a Load Balancer section still says it "can be found in the Sun Java System Access Manager 7 2005Q4 Deployment Planning Guide". I was hoping for it to be updated and included. Or piece it out as a seperate document, like Scaling FAM which could then be referenced from both the admin and Install/Config guides.

2) In the same section, step 2 (and steps from other sections like Access Control) instructs you to "Install the SAML v2 Plug-in". This confuses me as I thought the SAML v2 plugin was part of FAM8?

3) In the same section, it references importing the meta data. It would be great to have a section outlining the exportation and importation steps required between different versions of FAM. For example, how would an IDP using FAM7 send meta to a SP running FAM8.

I know documentation is not easy, so keep up the good work.

PS. I'd love to see a documented deployment example referencing the LB option "SSL configuration for only the load balancer: SSL termination/The load balancer terminates the SSL connection from the client and makes a seperate SSL connection to the Access Manager servers" as referenced by:
http://docs.sun.com/app/docs/doc/819-2136/6n4eq7si5?a=view

maybe using Cisco gear instead of F5 as the other example provides.

Posted by Jason Hammerschmidt on September 09, 2008 at 12:15 AM PDT #

Excellent, Jason. I will pass these comments on to the rest of the team. The issue that I need to point out for this release is that the doc set is incorporating material from 3 previous releases plus new stuff. That's probably why you see installing the SAML2 plugin in the EA version. It was copied from the Plug-in guide in anticipation of an OpenSSO rewrite during this Early Access period.

And the thing about deployments is that they can be very specific and we need to write examples that are more generic so they are useful to all (or many). The deployment example I am writing now is half of what you asked for - we go non-SSL from the load balancer to OpenSSO which doesn't match your need but between the finished book and the community I think you'll be able to use it, if needed.

I really like the Scaling OpenSSO idea. But that would have to come after the release. I'll put it on my plate. Thanks for the input.

Posted by DocTeger on September 09, 2008 at 12:42 AM PDT #

Post a Comment:
Comments are closed for this entry.
About

docteger

Search

Categories
Archives
« April 2014
SunMonTueWedThuFriSat
  
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today