Thursday Aug 19, 2010

Free Webinar: Simplifying Access Management with F5 & Oracle Aug. 26. 10:00am

Security is hard!  However, the tools that you use to protect your identities should not be. 

Security is hard because of a number of specific environmental, economic and business driven reasons.  One, the threat vectors are growing at exponential rates.  This is driven by the fact that the financial rewards for exploiting data and information are increasing globally.  Whether the data is stolen identities, pricing information for the new release of a product. fraud on internal or external purchases or any of the other 1000 different nefarious threat vectors, businesses and consumers need to be protected.

Two, the number of identities, devices and service providers is also increasing.  The internet is the way we do business globally.  It is the path to which our customers purchase, partners exchange data, and business provide services within their network.  And, at the heart of every exchange of data is an identity.  This identity has critical attributes about an individual that drive the appropriate access to information and services. 

Three, organizations are under increasing regulatory pressure.  Whether it is SOX, FERPA, HIPPA, JSOX, etc. there are access management controls that must be in place to ensure the CFO, CTO and CEO can sign the compliance documents necessary to manage risk in their business. 

This is a complex environment.  Why do the tools that we use to manage access and security within our organization have to be equally complex.  This is why F5 and Oracle have been working together to bring a solution which simplifies access management.  The Big IP Solution is a great way for organizations to simplify access management.  Whether they are integrating multiple Single-Sign-On products with Oracle Access Manager or using this appliance to simplify their IT infrastructure.  The result is faster time to market, faster time to deployment and faster time to security. 

On Thursday, August 26.  We are hosting a webcast that will take you through the solution and talk about why we believe this will simplify Access Management.  Please join us as F5 and Oracle product experts explain this simple solution.

Title: Live Webcast: Streamline Access Management with F5 & Oracle

When:  Thursday, August 26, 2010, 10:00 a.m. PT or 1:00 p.m. ET

Where: Register for this live webcast here: Streamline Access Management with F5 & Oracle

Wednesday Aug 11, 2010

New Release: Oracle Directory Server Enterprise Edition Strategic

Strategic New Release of Oracle Directory Services Directory Server Enterprise Edition 11gR1

I would like to pass on some good news from the Oracle Directory Services Blog here:  The following is a reprint of their recent good news concerning Oracle Directory Server Enterprise Edition: (Download Instructions from Brad Diggs aka The Zone Manager here)

Oracle released a new version of Oracle Directory Server Enterprise Edition 7.0, ODSEE 11g Release 1 recently.  The strategic commitment to Sun's Directory Server Enterprise Edition is important for customers who wish to grow the foundation of their identity infrastructure faster and easier. The new release offers improvement in performance over previous releases allowing companies to accelerate their applications while reducing their total cost of ownership. With this new release, companies can also reduce cost by improving serviceability with faster import times and smooth, in-place upgrade that reuses your existing data store. This complete solution provides a directory server, proxy server (for high availability and distribution of data and load), web console and synchronization with Active Directory, all under one product (ODSEE) and licensed as part of Oracle Directory Services Plus.

ODSEE 11gR1 is a rebranded release of Sun Directory Server Enterprise Edition 7.0 and is equivalent to a patch release. It does not include new functionality but provides additional stability and security with the inclusion of many fixes that where previously released as patches and hot fixes.

This release also aligns the list of supported platforms with most other Oracle Fusion Middleware products. For details of the changes to supported platforms, see Platform Support, System Virtualization Support, and Operating System Requirements.

As part of the integration with other Oracle Fusion Middleware components:

This updated release improves the overall quality and robustness of deployments. Among other features and capabilities , by upgrading from DSEE 5.2 or 6.x you might benefit from:

    • Up to 300% performance improvement

    • In place upgrade from DSEE 6 and 7 (no need to export/import existing data)

    • Reduced disk space and memory footprint

    • Optional data compression

    • Instant restore capabilities

    • Advanced tuning capabilities

    • Improved control over traffic going through Directory Proxy Server

    • New distribution algorithm with Directory Proxy Server

    • Updated list of supported Operating Systems, IP v6 supported on all platforms

    • Directory Service Control Center supported on broader list of application servers

    • For more information please visit:

Tuesday Jul 20, 2010

Last Chance to Register: Launch Webcast Identity Management 11g

Date: Wednesday, July 21, 2010
Time: 10:00 a.m. PT / 1:00 p.m. ET

Register here

Tuesday Jul 13, 2010

Register Today for Free Webinar: A Giant Leap In Identity Management

The Identity Management market is evolving and it is an exciting place to be involved in shaping that evolution.  For some that evolution is an opportunity for others it is a headache.  At Oracle we see this as a great opportunity. 

When I started in the Identity Management field it is wasn't even called identity management it was about solving high availability problems for customer and partner extranets before personalization and portal solutions existed.  LDAP was a great solution for these problems and Netscape and then Sun Directory Server were the industry best solutions.  They still are today.  However, in this space alone there has been considerable evolution.   Virtual directories, directory proxies, Active Directory Synchronization are all essential components of best of breed directory server product's.  Oracle Directory Services Plus is a good example.  

The fuel behind this tremendous evolution is the business environment in which these solutions exist. There is no magic in figuring out these key business trends.  Organizations face increased threats from global security risks internally and externally. 

You had to bury your head in the sand to not notice the fact that these threats have landed some of the greatest IT organizations and governments in prime-time analysis on CNN or on the front page of the major news portals.   The global economic slowdown has caused business to seek better value from the products they have already purchased.  Increased government scrutiny and regulation has fueled compliance projects and organizations to ensure business and IT audits can be signed off by the CTO and CFO of major organizations.  And, the CTO and CFO don't want surprises so they have funded projects and purchased solutions to ensure they stay in compliance ---No Surprises!

At Oracle, meeting these challenging problems with innovation is the name of the game.  At the same time, we strive to provide the most complete solutions based on standards for our customers.  This is why we are excited about our event next week.  At this webinar we are taking a "Giant Leap Forward In Identity Management".  Amit Jasuja, Vice President of Identity Management and Security at Oracle, will be sharing the latest news from Oracle on why we believe we are uniquely positioned to solve these business problems for the best organizations on the planet.  Register Today for this exciting event.

Webinar Registration
Wednesday, July 21, 2010
10:00am PDT, 1:00 EDT, 7:00pm CET
Register here

Thursday Apr 29, 2010

Register Today for this Webinar! Improve Time-to-Market and Reduce Cost with Oracle Directory Services

In some studies, enterprises are spending up to 60% of their IT budgets on operational costs thus impacting the available budget to spend on innovation. The challenge we all face in the identity and IT departments is how to get the most out of our existing licenses and reduce cost where possible in delivering IT projects. One of the costly areas of projects is getting at identity data when it lives in legacy applications. This is especially true when you look at Federation projects, mergers and acquisitions or in data center consolidation projects.

If you are running a Federation project and have to access identity data in legacy or disparate data sources and feel like you are herding cats then this webcast is for you! Virtual directories provide a critical tool for Federation projects as they allow you to expose identity attributes without changing code in legacy applications. Additionally, you have control over how the data is accessed allowing you to manage sensitive service level agreements which can cause difficult political battles in organizations when discussing access.

If you have worked on a data center consolidation project either driven by a merger, acquisition or as part of a cost control exercise you need to have a full bag of tools.  The tools you bring to the project provide the critical agility needed to meet time-lines but also to minimize impact on business operations.  Virtual Directories allow you the ability to connect to data sources without having to alter the application code.  This reduces resource requirements, increases speed but most importantly maximizes business continuity.   

Register here for this webinar and we will look at ways virtual directories can help you become an identity hero in your organization.

Friday Apr 23, 2010

New Oracle Security Newsletter

Oracle Identity and Database Security Teams have created a new Security Newsletter. The Newsletter launches this week and will be distributed to customer's who have signed up for the Newsletter via

In each edition, you'll find news, blog posts, events, webcasts, and much more covering Oracle's Security Solutions. Whether your focus is on identity management or database security, each issue will be filled with the information you need to secure your database, middleware, and applications, and meet IT compliance requirements.

In this inaugural version of the newsletter you will find content on:

You can see the entire newsletter here

Register for future versions of the newsletter by following the directions here.  You can also see samples of all the different newsletter content that is available to stay current and aware of the latest leading news from Oracle.

Wednesday Mar 03, 2010

Register Today! Webinar on Smart Strategies for Securing Extranet Access

Are you pursuing changes to your Directory Services or Access Management infrastructure this year?  If so, there are two resources that you want to be aware of to help understand the opportunity and impact on your organization.  Eric Leach, will be presenting a webinar next week as part of the SANS Institute's Webinar series on Security.  You can register for the webinar here.

Title:  Smart Strategies for Securing Extranet Access
When:  Tuesday, March 09 at 1:00 PM EST (1800 UTC/GMT)
Presenter: Eric Leach & Dave Shackleford
Register here


 Additionally, there was a new training course that was launched for resources interested in building a solid foundation for managing Directory Services.  The course also offers an insight into the essential building blocks of access management.  Additionally, it covers the use of virtual directories which is a crucial component of an enterprise identity architecture.  The virtual directory can help consolidate legacy directories when companies want to reduce cost.  Additionally, when time is critical for federation projects or mergers and acquisitions a virtual directory can help connect necessary identity attributes without changing code. 

This foundational course on Directory Services can be found here.  The course covers the following topics:

  • Discuss the importance, features, benefits, and functional aspects of identity management and Oracle Identity Management products
  • Describe concepts associated with directories and the Lightweight Directory Access Protocol (LDAP)
  • Compare Oracle Internet Directory and Oracle Virtual Directory two Oracle Identity Management products

The course can be accessed here.

Tuesday Jan 19, 2010

DSEE 7 Proven Performance Also Reduces Cost

DSEE 7 launched in November and just after Christmas a couple of our Directory experts in the community at Sun took it for a test drive on the new F-20 PCIe flash drives at Sun.  The results confirmed the internal testing we did in the improved performance in import times, the reduction in Directory footprint due to compression and the overall performance improvements for DSEE 7.   This is critical for our customers because it will allow them to take advantage of growth in their business while bending the operational cost curve for their system. In some organizations, their operational budget is their biggest line-item so being able to meet growth targets while also addressing the time, cost and complexity of servicing the environment can release capital for investment in new product development.  

The team that did this great work has agreed to share the results of their testing in a series of blog articles over the next week.  The first article will be presented tomorrow by Brad Diggs, Principal Field Technologist.  Here are just a few highlights from the results that Brad will share tomorrow on compression:

  • The storage footprint was reduced by as much as 66%.
  • We were able to cache greater than 50% more entries into the filesystem cache.
  • Compression almost completely negated average entry growth that is due to the natural addition of operational attributes and replication metadata over time.
  • The nsslapd-db-page-size could be smaller and more consistent with entry growth over time. 

The other team members will be sharing insights that they learned during the testing so I encourage you to bookmark these blog's and take a look over the next couple of weeks.  The team will be sharing not only the results but the lessons learned.  One of the blog articles will discuss tuning to get better import times as well as how to set-up your own SLAMD environment to test your Directory infrastructure.  Please bookmark the following blog locations to see the results:

Brad Diggs, Principal Field Technologist, here
Ludo Poitou,  OpenDS Community Manager, here
Mark Craig, Directory Integration Team Manager, here
Wajih Ahmed,  Principal Field Technologist, here
Nick Wooler, Directory Server Product Line Manager, here

As you look at your business goals for 2010 and are looking for ways to meet your growth goals while keeping your costs under control then take another look at Directory Server 7.  Does your Directory Server provide you with the proven performance and continued innovation as Sun Directory Server Enterprise Edition 7? 

Tuesday Nov 17, 2009

NEW!! DSEE 7 Download, Documentation and Upgrade Guide Available Today

DSEE 7.0 is available for download today here with new documentation here.  The critical document you want to look at is the upgrade and migration guide here.

Directory Server Enterprise Edition 7.0 Boosts Speed and Performance: 

Considered one of the best extranet LDAP Directory Servers in the market today, the latest version of Directory Server Enterprise Edition allows enterprises to accelerate growth in a simplified way, improve performance and lower total cost of ownership. Directory Server Enterprise Edition 7.0 has been optimized to improve performance by more than three times when compared to its predecessor. In addition, this release provides innovations that improve authentication and modification performance by 60 percent, allowing customers to accelerate their applications without changing one line of code. 

What's New with Directory Server EE 7.0

Boosts speed and performance: DSEE 7.0 has been optimized to improve performance of some operations by more than 3x the current version. In addition, this release provides hardware optimization with up to 60% improvement in authentications and modifications. 
Reduces Total Cost of Ownership– Reduce cost by using the only solution in the market that provides customers with a directory server, virtual directory, proxy server, web console and Active Directory synchronization tool-kit under a single license. 
Hassle Free Upgrade – DSEE 7.0 provides a simple upgrade path and provides 5x performance improvement in data import times, thereby reducing migration costs. 

You can see a webinar we did recently on DSEE 7 and Role Manager 5 on why this release is important to your business and how this can help your company meet growth goals and reduce your total cost of ownership.

Friday Nov 13, 2009

Webinar: Identity Management and Healthcare

The  Sun Identity Management team will be giving a webinar next Wednesday to discuss the very important topic of Identity Management and healthcare.  As the healthcare legislation moves through congress the increase of 36M patients on healthcare providers, insurance companies, and patients will be profound.  The cost savings projected by the bills will rely on IT systems to provide increased access to information to drive productivity gains.  As we have seen with recent high profile identity security breeches at hospitals identity security is critical in making sure the right people have access to the appropriate information, that information must be shared with all members of the value chain securely.

Sun's Identity Management Suite provides a powerful package of solutions to help with storing identity information with Directory Server Enterprise Edition;  managing authorization, federation and web services security with OpenSSO; providing provisioning solutions with Identity Manager; and, defining and managing role based access control with Role Manager.

Join this free Webinar to learn how Sun's identity management solutions can help your organization to:

  • Automate management of digital identities for other providers, patients, physicians, clinicians, and payors Provide single sign-on (SSO) and secure federated access to privacy-regulated healthcare information while adhering to strict mandates
  • Enable delegated, self-service password management
  • Comply with the Health Insurance Portability and Accountability Act (HIPAA), internal security policies, and corporate governance policies with complete auditing and reporting capabilities

Sun identity management solutions make it easier for healthcare organizations to manage and share digital information.

Register here.

Topic: Topic: Sun Webinar Series - Identity Management for Healthcare
Date: Wednesday, November 18, 2009
Time: 10:00 am PDT / 1:00 pm EDT / 19.00 CET (check my timezone)
Duration: 1 hour

Sun Product Manager Suresh Sridharan

Thursday Nov 12, 2009

NY Identity User Group December 2

SAVE THE DATE - Wednesday, December 2, 2009
Sun Identity Management User Group Session
Grammercy Park Room
Sun Microsystems, 101 Park Avenue, New York, NY

The Sun Identity Management User Group will meet for its next session at Sun Microsystems, 101 Park Avenue, New York, NY on Wednesday, December 2, 2009. 

We are still finalizing the agenda and I will publish in this blog as soon as it is ready. 

Register here

Here are a couple of pictures from a user group in London.  Etienne is doing the presentation on Directory Server.

Thursday Oct 22, 2009

What's New In Directory Server Enterprise Edition 7?

Yesterday, Neil Ghandi, Matt Hamlin, Etienne Remillon and I gave a quick overview of what is new in Directory Server Enterprise Edition 7 and Role Manager 5.  Here are just a few of the great highlights that were discussed during the presentation.  Of course, you can get the full video embeded below.  Lastly, if you are interested in seeing more events like this you can go to the webinar site here.  

You can download the slides here.  You can download the video here.

Wednesday Sep 02, 2009

LDAPCon2009: Growth in identities requires LDAP to innovate

Our very own, Ludo Poitou will be presenting with other luminaries in the identity industry at The 2nd.International conference on LDAP, LDAPCon 2009 will be held on September 20th and 21st at Waterfront Marriot Hotel , Portland OR, USA.

LDAP is gaining renewed attention as the identity repository for enterprise, telco's, global partner networks, healthcare and education institutions.  The LDAP repositories have been faced with massive growth over the last five years and the performance and availability they have come to rely upon is being tested. New requirements driven by the growth of users, the explosion of security requirements imposing more "writes" and the access to web services security and policies are forcing LDAP experts to look at new innovations.

You should attend, if you want to be apart of hearing how LDAP experts are innovating and addressing these business and technical challenges.  If you haven't registered yet, please register NOW here!

The registration fee includes access to the LinuxCon 2009 (Sep 21 - 23), and if you still need to be convinced that it's worth attending, you can check the agenda here.

Monday Jul 27, 2009

Sun Extends Leadership and Drives Innovation in Directory Services and Access Management with New Offerings

This is going to be a fun week for three simple reasons.  One, we are releasing the next version of the OpenDS SE product this week continuing to prove that Sun is an innovation company.  Two, Burton Catalyst is this week in San Diego and the Identity Management team will be there to listen, learn and evangelize.   Three, the US Water Polo team enters the medal round of the FINA World Championships.

First, the latest release of OpenDS contains three innovations that are important to customers that need a high performance directory server in their identity architecture.  Identity architecture's are evolving.  The traditional arguments of choose a directory purely because of it's read performance will not suffice as identity data is being updated by multiple applications to meet security and policy requirements.  This does not mean that read performance and stability are still the critical requirement it just means that the pendulum is swinging to include more read performance.  This is why we are excited about the early performance testing results that we are seeing in OpenDS with 14,000 writes per second.  Here is a link to some other performance testing data on the Nehalem platform for those of you that like to get into the weeds.

Second,  Burton Catalyst is happening this week in San Diego.  This conference is always a favorite as they do a great job of attracting real identity and security practitioners in one location.  This allows for a real exchange and learning experience for all of us that that want to move identity security forward.  If you haven't done so already and want to attend here is the information.

Lastly,  the US Water Polo team made it out of the preliminary round into the elimination round and will play on Tuesday at 21:00 CET.  This will be at 12:00pm PT.  I have been watching the games I can and the highlights on  This is where the internet shines and changes the world.  It is so powerful that those of us that support sports like water polo, swimming, etc can not consume the content we want via sites like NBC Universal when traditionally the mainstream media could not afford to distribute this content.  The internet has provided that low cost channel.  Sun Microsystems helped provide the technical platform for NBC Universal during the Olympics and it was a huge success.  I am not sure if Sun is helping with the FINA World Championships but I am still supporting the site.  I hope you will as well.


Sharing 12 years of technology experience as developer, product and program manager, and marketing director. Identity Management, Security, and Product Management issues occupy my mind during the working day. Water Polo keeps me healthy.


« July 2016