Following on from my recent posting of a Federation Manager demo showing Liberty ID-FF federated single sign-on, here is a demo of Access Manager and Federation Manager I showed at a Liberty ‘eGovernment Forum’ in Dublin back in April.
This demo shows an employee of the ‘Department of Health and Children’ logging into the department’s portal, visiting another government department, the ‘Stationery Office’, to obtain an official report, and having the Stationery Office query their ‘home’ department for a mailing address via the Liberty Identity Web Services Framework (ID-WSF).
This is a very simple demo, but it demonstrates some key aspects of Liberty ID-WSF:
- ‘Bootstrap’ from federated web single sign-on (ID-FF) to web services (ID-WSF).
- Use of the Discovery Service to locate a web service for a given user. (This takes place ‘under the covers’ – the bootstrap provides the service provider, in this example the Stationery Office, with the location of the Discovery Service and a credential to use on behalf of the employee. The service provider queries the Discovery Service for the location of the Personal Profile service).
- Use of the Personal Profile Service to retrieve a user’s profile attributes.
- Use of the RedirectRequest protocol (specified in the Liberty ID-WSF Interaction Service Specification) to allow the employee’s ‘home’ department to prompt for confirmation that address information is to be released to the Stationery Office.
Just click the screenshot below to view the demo…
UPDATED 11/21/2005 – corrected Interaction Service to RedirectRequest protocol – see comments
Courtesy of Flickr…
Unfortunately, my SmartMedia PC Card started to malfunction while I was away, so I lost a bunch of great photos, including one of three Japanese Sun Microsystems bloggers together – Shingo Yamanaka, Takashi Shitamichi and Akihito Fujii. Oh well…
I just got back from a month of business and vacation travel (Singapore, Disneyland, Tokyo), so I have a backlog of blog entries fermenting away. Here’s the first…
I recently blogged on Sun Java System Identity Manager’s outstanding performance in InfoWorld’s Identity Challenge. We have now secured reprint rights for the portion of the article covering Identity Manager. Here are some choice quotes:
- “… a level of reliability and maturity that’s rare for this segment”
“… it simply works. Implementation and pricing are definitely enterprise-oriented, and certainly this solution deserves a close look for large deployments.”
“… the whole migration process worked like a big wizard”
Read it, print it out, wallpaper your spare room with it
Incidentally, there’s an interesting correction at the end of the article:
The Sun Java System Identity Manager 5.5 bundle includes Identity Manager, Access Manager, and Directory Server Enterprise Edition. Including software, support, and maintenance, it costs $50 per employee per year, or $135,000 per year for our 2,700-user test scenario. The text has been corrected.
Shame they don’t seem to have updated the scores – it looks like Identity Manager would tie with or beat Novell with the corrected scoring…
UPDATED 11/17/2005: Revised PDF from InfoWorld has correct pricing. Score for value still doesn’t reflect correct price, though.
I’m in Japan this week, at JavaOne Tokyo. Here’s a quick picture of Tatsuo Kudo explaining Sun’s Identity Management products.