Novell/NetIQ IDM and Shibboleth

Mon Feb 15 10:28:27 EST 2016

We have had Identity Manager for years, to sit between our MIS system (QL) and AD. We still have some Novell servers left (mainly shared drives), and some SLES VMs (including our retired and live IdPs) but gradually the non-SLES servers are being phased out in favour of ADFS for storage.

Our Shibboleth IdP now talks exclusively to one of two AD controls (I have 2 setup in the config). As does moodle and all our other web servers that use network authentication.

We also have SSPR, integrated into our desktop build as well as via an externally-available web page.

HTH,
Dave

_________________________________________________
Dave Perry
eLearning Technologist, Hull College Group

Room L34 - Queens Gardens Library
Wilberforce Drive, Queen's Gardens, Hull, HU1 3DG
Extension 2230 / Direct Dial 01482 381930

* Need a fast reply? Try elearning at hull-college.ac.uk<mailto:elearning at hull-college.ac.uk> *

From: users [mailto:users-bounces at shibboleth.net] On Behalf Of David Gersic
Sent: 15 February 2016 15:24
To: Users Shib
Subject: Re: Novell/NetIQ IDM and Shibboleth

NIU is a long time user of MicroFocus (was NetIQ, was Novell) eDirectory and Identity Manager. We're also using Shibboleth here. They go quite well together, IMHO. We aren't using OSP here, but a friend has written an article on how to get OSP to work with Shibboleth (https://www.netiq.com/communities/cool-solutions/configuring-idm-4-5s-osp-talk-shibboleth-idp/), so maybe that's an option for you.

We are using the open source (Pwm) password manager, not SSPR. They're pretty close to the same thing, but I was using Pwm before SSPR became available, and haven't had the time or desire to look in to changing something that's working just for the sake of changing it.

________________________________
From: users <users-bounces at shibboleth.net<mailto:users-bounces at shibboleth.net>> on behalf of Schwoerer, Brad <schwoerb at uww.edu<mailto:schwoerb at uww.edu>>
Sent: Friday, February 12, 2016 12:38 PM
To: Users Shib
Subject: Novell/NetIQ IDM and Shibboleth

I was curious how many institutions use NetIQ IDM products and also have Shibboleth as their IDP.  The reason I am asking is, we use some of their products and one of their products (OSP) that make use of SAML2 does not work with a Shibboleth IDP, and I am looking for others that can help persuade them to support more than NetIQ Access Manager as a SAML2 IdP.

Also, I am curious if others are looking at integrating with SSPR for password expiration checking as well as the other checks it can do.

If people can respond off list, that would be great.  Thanks.

-Bradley

**********************************************************************
This message is sent in confidence for the addressee
only. It may  contain confidential or sensitive
information.  The contents are not to be disclosed
to anyone other than the addressee.  Unauthorised
recipients are requested to preserve this
confidentiality and to advise us of any errors in
transmission.  Any views expressed in this message
are solely the views of the individual and do not
represent the views of the College.  Nothing in this
message should be construed as creating a contract.

Hull College Group owns the email infrastructure, including the contents.

Hull College Group is committed to sustainability, please reflect before printing this email.
**********************************************************************

TEXT
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20160215/6525d0a6/attachment.html>