Monday Nov 19, 2007
Monday Nov 12, 2007
By dr156914 on Nov 12, 2007
I'm happy to announce that Sun's Access Manager was included in Gartner's leaders quadrant for web access management. According to Gartner we kick butt with regards to execution. True dat!
I don't necessarily agree with them regarding vision, but we'll just need to keep talking with Gartner and continue to show them all the great things we're doing including identity services, web services security, dynamic federation and access management.
We'll also need to start talking more about how this relates to other exciting things going on at Sun including XVM Opcenter, Server virtualization, and Solaris. Lots to do so onwards and upwards!
To access the latest Gartner Magic Quadrant for Web Access Management, please visit:
Saturday Nov 10, 2007
By dr156914 on Nov 10, 2007
There have been great strides in the OpenSSO community and one of the areas I am particularly proud of is the addition of identity services. Applications that authenticate end users using identity services can securely pass their attributes to OpenSSO without the need of an agent or labor-intensive kit. Identity Services can be invoked using REST or WSDL interfaces in the IDE of your choice. This means no agent is required to protect a resource. The identity services in OpenSSO (and available in our Spring release of Federated Access Manager 8.0) include:
\* Authentication — Verification of user credentials
\* Authorization — Permission for authenticated users to access secured resources
\* Attributes — Collection of the profiles of authenticated users
\* Audit Log — Ability to audit and record operations
Below is an example of the authentication identity service being invoked using Netbeans. This service is IDE agnostic and can also be used in Eclipse and Visual Studio.
If you're interested in exploring this functionality download OpenSSO and begin playing today. Also, Aravindan Ranganathan, one of our talented software architects at Sun, wrote a nice technical article titled Securing Applications With Identity Services, Part 1: Authentication. He will be publishing three more technical articles on the remaining services shortly - Authorization, Attributes, and Audit Log.
Read my extraordinary thoughts about the world of identity and access management. As an identity child prodigy, I have much to say about these subjects.
- So Long, Farewell, Auf Wiedersehen, Good Night
- EU Clears Oracle-Sun Deal
- New Blog at SmokingMonkey.org
- Sun Webcast Series - Identity Manager and Role Manager Product Update
- Express Scripts Accelerates Provisioning by up to 64% with Sun Identity Management
- IDM Buzz Podcast: ROA, OAuth, REST Services and OpenSSO
- Watch Webinar: Next Generation Fine Grained Access Control Using Open SSO
- OpenSSO Integrates with EJBCA, Enterprise Class PKI Certificate Authority
- Next-Generation Fine-Grained Entitlement Enforcement Using OpenSSO
- OpenSSO & Layer 7: End-to-End Web Services Security