• The Four Hundred
  • Subscribe
  • Media Kit
  • Contributors
  • About Us
  • Contact
Menu
  • The Four Hundred
  • Subscribe
  • Media Kit
  • Contributors
  • About Us
  • Contact
  • Future Tivoli Tools Extend SSO To Clouds, Analyze Services

    October 10, 2011 Timothy Prickett Morgan

    Password management and the security issues (mostly human) that surround it continue to be a bone in the throat of IT departments. Having established standards like Security Assertion Markup Language (SAML) and OpenID to control how users access applications within the network and behind the firewall, now app-crazed employees want to roam outside the firewall and use the same single sign-on (SSO) tools that they have for enterprise apps to get them access to the cloudy apps. The good news is this is exactly what IT departments want to have happen, too.

    So IBM is starting to tell customers about some enhancements to its Tivoli security products that will allow cloudy applications like LotusLive, Salesforce.com, and Google Apps to be brought into the same access control framework as internal apps and be giving SSO capability. You log in once and all the apps and systems under the watchful eyes of Tivoli let you bounce across public and private networks.

    As we learn in announcement letter 211-468, Tivoli Federated Identity Manager will use SAML, OpenID, and OAuth–that last one is the new bit–to make it so someone working from an external Web-based application can authenticate against your internal systems and share data with your site. OAuth is an authentication method created by Twitter that has been expanded and used by a number of Media 2.0 sites to allow people to share their pictures, files, and contact lists from one Web site with another without having to pass their credentials to that outside Web site.

    OpenID allows for a single user name and password to provide SSO capability across two Web sites. SAML provides a mechanism for doing authentication across distinct networks without resorting to saving cookies all over the place involving establishing a trusted store of identities that is also a repository of user names and passwords. You don’t log in so much as prove to SAML who you are and then it logs you in. SAML has been around since 2002, but the problem is that most Web applications don’t support it. And so, like everyone else, Tivoli Federated Identity Manager needs the OAuth hack to do authentication and also to allow for data to be shared across two different Web apps.

    The Horizon Application Manager from VMware was created to solve the same authentication issue and to also provide a means to allow end users to subscribe to apps, both inside and outside the firewall, as if they were on iTunes.

    Tivoli Federated Identity Manager Business Gateway, which already supported SAML and which does auditing and compliance control for end users coming into the corporate applications from outside the firewall, will before the end of the year get expanded token support, adding to its existing SAML support.

    IBM also hinted that it was working on new product called Tivoli Analytics for Service Performance, which will launch sometime in the first half of 2012. This product is brand new and will be used to analyze how services on the corporate network–by which IBM means the stuff that comprises applications–are performing so you can figure out when things are going wrong before they die. It will gather and analyze performance data from systems, their applications, and the networks that connect them and their end users together. The idea is to watch what normal behavior is on these networks and then watch and alert administrators when something don’t look quite right.

    RELATED STORIES

    IBM Updates Service Delivery Manager

    Cloudy Infrastructure the Top CIO Priority in 2011

    Tivoli Provisioning Manager Deal Chops Prices in Half

    IBM Updates Tivoli Job Scheduler

    SAML 2.0 Enables SSO Products to Work Over the Web



                         Post this story to del.icio.us
                   Post this story to Digg
        Post this story to Slashdot

    Share this:

    • Reddit
    • Facebook
    • LinkedIn
    • Twitter
    • Email

    Tags:

    Sponsored by
    Chilli IT

    Chilli is one of the UKs leading IBM support and management providers with 20 years’ experience in the power and storage industry. Our bespoke solutions for maintenance, security and infrastructure delivers a service which is cost effective, increases productivity and enhances efficiency. Our ethical approach and unrivalled knowledge has secured business partnerships with blue-chip companies in the technology, retail, banking and travel sectors.

    As an IBM Business Partner, we provide you with the peace of mind that you are working in partnership with a company accredited to the highest standard. Our team of experts have worked together for many years and deliver projects which include consolidation, High Availability, Operating System upgrades; and backup and recovery installations.

    Contact us to see how we can help your business with IBM support and management.

    www.chilli-it.co.uk

    info@chilli–it.co.uk

    Share this:

    • Reddit
    • Facebook
    • LinkedIn
    • Twitter
    • Email

    Admin Alert: How to Retrieve Password Parameters for Auditors GXS Shares Development Plans for IBM i Customers

    Leave a Reply Cancel reply

Volume 20, Number 34 -- October 10, 2011
THIS ISSUE SPONSORED BY:

BCD
Infor
Townsend Security
Vision Solutions
Shield Advanced Solutions

Table of Contents

  • IBM Readies October Power Systems Announcements
  • Speaking of IBM i Innovation . . .
  • Oracle Drives Java Technology Forward at Annual Conference
  • As I See It: The Other Final Frontier
  • Oracle Has Built A Modern, Cloudy AS/400
  • Infor Wants You, Channel Partner
  • IBM Grabs Q1 Labs and Creates New Security Division
  • IBM’s Wheels And Deals On 10 Gigabit BNT Switches
  • Future Tivoli Tools Extend SSO To Clouds, Analyze Services
  • IBM Offers Tech Support Try-and-Buy Services

Content archive

  • The Four Hundred
  • Four Hundred Stuff
  • Four Hundred Guru

Recent Posts

  • IBM i 7.3 TR12: The Non-TR Tech Refresh
  • IBM i Integration Elevates Operational Query and Analytics
  • Simplified IBM i Stack Bundling Ahead Of Subscription Pricing
  • More Price Hikes From IBM, Now For High End Storage
  • Big Blue Readies Power10 And IBM i 7.5 Training for Partners
  • IBM Delivers More Out-of-the-Box Security with IBM i 7.5
  • Groundhog Day For Malware
  • IBM i Community Reacts to IBM i 7.5
  • Four Hundred Monitor, May 11
  • IBM i PTF Guide, Volume 24, Number 19

Subscribe

To get news from IT Jungle sent to your inbox every week, subscribe to our newsletter.

Pages

  • About Us
  • Contact
  • Contributors
  • Four Hundred Monitor
  • IBM i PTF Guide
  • Media Kit
  • Subscribe

Search

Copyright © 2022 IT Jungle

loading Cancel
Post was not sent - check your email addresses!
Email check failed, please try again
Sorry, your blog cannot share posts by email.