How do I manage all the information about users of my systems in an effective way? How do I leverage this information for other purposes?
The use of directories as a repository of user information is becoming more common as software vendors release directory compliant products.
There is a range of directory products available from vendors including Microsoft, Novell, Oracle, SUN, Critical Path, Computer
Associates and IBM.
Directories support the LDAP standards to provide access to the information they contain. This means that in theory it is possible to
have a single repository of user information and to use that repository for authentication and identification services across an
enterprise.
However, the situation is not that simple for a number of reasons:
• Applications and systems often provide support for a specific set of
directories, rather than being designed to support all LDAP
directories.
• Applications and systems often require extensions to standard information
and structures stored within a directory and these extensions may not always
be compatible.
• Access control information is often stored within an application or system
rather than a directory. This means that user administration tasks need to make
changes to the directory as well as to the applications.
Successful implementation of directories requires an understanding of vendor offerings and practical experience in integrating
information and business processes.
