Identity Infrastructure Is
Our Area Of Expertise

The subjects discussed here include technologies, standards, architecture, implementation, and applications ... a broad range, to be sure. Each area is evolving rapidly due to the dramatic increase in scope and importance of identity for services and applications. LDAP, virtual directories, federation, and SSO are now key ingredients in an IT infrastructure. The ability to get maximum performance from them is absolutely critical. We are fortunate to have a "behind-the-scenes" view, and hope the observations we share from that perspective prove useful to our readers who care about these topics.

Follow Symlabs
More Information
Blogroll
Entries By Topic
Wednesday
Jun232010

New Version Of Symlabs Free LDAP Browser Now Available

DateWednesday, June 23, 2010 at 03:30PM

We've just released Symlabs LDAP Browser v1.5 - a faster, friendlier, and even more compatible LDAP browser for identity management professionals who want a rock- solid application to assist in managing LDAP-based infrastructures at the most attractive price possible ... FREE.

In this new and improved version of our free LDAP browser we've done a complete overhaul of the connection manager, making it simpler to set up and store the parameters used to connect to different backend repositories. The new connection manager allows you to quickly change basic parameters for existing connections, and then connect with or without saving those changes. It sports a new tabbed interface that groups settings which belong together, making it easier to find the parameters that you want to change.

In the spirit of updating the GUI and providing a friendlier interface, we've developed an improved Entry editor, so that it is easier to view and edit the entries stored within your directories. Virtual Schema Management windows have also been developed to make it easier to work in environments that make use of virtual directories or LDAP proxy solutions.

Many performance enhancements have been done to the underlying code which have made our LDAP browser quicker and generally more responsive. And, of course, we have sorted out some bugs that were present in our virgin release, resulting in a product that functions reliably and predictably well, regardless of the backend directory that it is connecting to or the platform that it is running on.

From the initial release, we were never really satisfied with our ability to handle referrals elegantly and, since this is a common feature for Active Directory users, we have put a lot of effort into providing a variety options that help you work with referrals or ignore useless error messages. This makes the browser "quieter", and much easier to use.

Just to put it all in one place here's a quick summary to list the new additions in v1.5:

  • Higher speed and better performance
  • Easier connection management and a new tabbed interface
  • Refined search and bookmarks features
  • Simplified display of entries and nodes
  • Greater compatibility with mainstream LDAP directories
  • More control, flexibility, and functionality for referral handling
  • Improved layouts for user interfaces and screens

We're really excited about the improvements that we've made to this product and believe that systems administrators and developers will genuinely appreciate the work that we've done. And, we're very pleased that we're able to keep the product free to use. We know that part is appreciated by the IT community, since it has been requested so often after its initial release just a couple of short months ago.

If you already use the previous version of the product, we encourage you to download and install the latest release to take advantage of the many improvements. And, if you haven't tried it yet, download Symlabs Free LDAP Browser here and it give it a whirl now.

AuthorRowan Puttergill | Comment1 Comment |
in , ,
Saturday
May152010

Kuppinger-Cole Interview Now Available

DateSaturday, May 15, 2010 at 06:00AM
While attending European Identity Conference 2010 in Munich our Virtual Directory Product Manager, Fernando Garcia, gave a very informative interview to Felix Gaehtgens, a Senior Analyst from Kuppinger-Cole, and it's now up on their website. Check out Fernando's interview to hear his interesting discussion with Felix about applications and directions for virtual directories. And, if you're interested in more thoughts from Felix, you can find him in our blogroll.
AuthorJeff Zukowski | CommentPost a Comment |
in ,
Wednesday
May122010

Impressions From EIC 2010

DateWednesday, May 12, 2010 at 07:44PM

This year's Kuppinger-Cole European Identity Conference confirmed that many of the players in the identity market are now trying to work more closely to improve future technologies and increase their uptake. The conference centered around 'the Cloud', a rather nebulous term for services provided over the Internet. As expected, discussions focused on security issues and on ways in which identity data could be leveraged to improve business in an environment where data is becoming increasingly distributed. In summary, it was apparent that, while some areas of contention regarding security have been settled by agreeing that different protocols should be used to achieve different ends, there are still many issues which need to be resolved.

As for improving revenue and management in the identity sphere, things seemed a lot more vague, and mostly hinged on the hope that businesses would come to see the benefits of these technologies on their own. This was most evident in a talk about Identity Cards, where roll-out approaches vary widely. The German approach enforces compulsory enrollment but offers services to businesses that may help reduce infrastructure costs, while the Swiss approach pushes the business cases for uptake but allows for voluntary adoption. Although some interesting ideas about potential ways the technology could benefit businesses were presented, it will only become clear over time whether businesses actually see these benefits.

Perhaps the most positive aspect of the conference was the impression that many of the big players in the market are trying to work together toward a common goal. However, opinions are still fairly divided, and I was somewhat concerned to observe a few high-profile players in the industry suggest that identity federation through SAML (and, in particular, the work that Liberty Alliance has done, now continued by Kantara Initiative) looked like it would die in the water. This thinking is a little uninformed and, when chatting with other visitors to the conference, it was good to hear that SAML is ubiquitous in the Australian education sector and is widely used across Sweden as well as Denmark in various other governmental sectors.

This confidence in SAML was certainly reflected in a talk by Fulup Ar Foll, who accepted that while OpenID had won ground in the Web 2.0 space, SAML is the natural choice in the commercial and enterprise sphere, as is InfoCard for user interfacing and identity selection. This unofficial armistice between competing technologies has allowed the market to move forward, and everyone in the identity market seems to agree that authentication is a necessary evil, but not the end goal. Now that we have settled some differences over the roles that these technologies play and the arenas in which they belong, we can start looking toward ways that they can enable other identity services to provide real and tangible benefits for businesses and consumers.

Although touted as an 'experts conference', it is clear that the real goal was to educate potential customers and vendors about new identity technologies. Actually, many of these technologies are not really that new. As already mentioned, the Liberty Alliance federation technologies have been developed over the last 10 years or so, and InfoCard has been in development for almost as long. Instead of explaining the practical usage of many of these technologies and demonstrating them in action, the conference speakers still discuss them in a very theoretical way. In talking to many of the integrators and visitors attending the sessions, I sensed that there was a general frustration with this tendency to keep to the theory and to continue talking about the future. Integrators felt that there was little focus or guidance on how to handle the very real problems that they face today, and that all of this looking toward tomorrow (when things will be much better) was not genuinely helpful.

A few of the visitors seemed overwhelmed by the sheer mass of acronyms, protocols, and jargon that was being used. Perhaps it would be fair to say that this type of conference is simply not geared toward people who lack an understanding of the basic theory already out there - but if one needs to be grounded in theory to really understand all of the talks, then there should be little need for the talks to remain theoretical. As an industry, we really need to be careful of not simply 'blinding our consumers with science'.

There seems to be a genuine need to balance conferences like EIC with some advisory workshops where integrators, developers, and architects can learn how to begin working in a direction that will help resolve current issues in a way that won't paint them into a corner in the future. I attended the Authentication and Authorization track entitled 'How to make your software security architecture future-proof' which was presumably intended to have precisely this effect. The panelists pushed the work they were doing and suggested moving away from connection-based authentication and a 'pull-based' identity infrastructure. However, there was little guidance on how to actually achieve this, or how to work it into an existing architecture that more than likely would be built around these types of technologies. The obvious time limitations in a big conference make it difficult to move beyond a high-level schematic of what these technologies involve and into any deeper discussion, so it is hard to be very critical of this. However, it may help to garner support if we can show practical examples of how these technologies are solving problems right now. Indeed, this was highly evident in the talk on OpenID development being done at Microsoft, where we were able to see a prototype solution to many problems using OpenID, as it currently stands, in action. More kudos to you, Ariel Gordon.

To illuminate my perspective for these comments, I'll note that Symlabs has an interesting history. Our core product is designed to resolve many of the immediate issues associated with distributed identity data and connection-based authentication. Much of our software is built around the theme of dealing with problems that people face today. Over the years, particularly through our involvement with Liberty, we have also genuinely explored future technologies. We built Symlabs Federated Identity Suite around many of these concepts. In this way, we have attempted to maintain a presence in both arenas. But one thing is clear to us - while interest in federation is slowly picking up, the majority of our customers are looking to solve today's problems today.

EIC 2010 in Munich was a great opportunity to meet some new people and catch up with many other familiar faces. It was interesting to see how many of the issues that used to be so divisive are now playing out, and it was a genuinely positive experience. I just hope that, when the next one comes around, the experience is a little less ethereal and we see a bit more of an effort to address the problems in existing infrastructures so it can match up to the forces driving these technologies.

Rowan Puttergill

AuthorRowan Puttergill | CommentPost a Comment |
in , , ,
Wednesday
Apr282010

Symlabs Is Exhibiting At EIC 2010 In Munich

DateWednesday, April 28, 2010 at 03:37PM

We've had a lot to keep us busy so far this year - new clients, some nice upgrades to our core products, and our new Symlabs Free LDAP Browser - but this month it's industry events. As soon as we wrap up here at The Experts Conference in Los Angeles we head out to Munich for European Identity Conference 2010. Over there we'll again be demonstrating Symlabs Virtual Directory Server, Symlabs LDAP Proxy, and Symlabs Federated Identity Suite so everyone can see how easy it is to configure them as solutions to a wide variety of common identity infrastructure issues. Even if you've seen them before, with all the new features and performance improvements we've recently added it's time for another look at the virtual directory products that lead the industry in speed and flexibility.

EIC 2010 has grown to be a big conference, now incorporating cloud computing into it's topics which already included identity management, governance, risk management, and compliance from past years. It's typically packed with information, and this year offers several workshop tracks, numerous presentations and panels, plus several keynotes including one on "convergence" by well-known identity expert Dave Kearns.

And, in case Dave doesn't specifically cover it in his keynote, we'll be happy to walk you through the process converging the multitude of directories and databases that comprise YOUR identity environment into a single harmonious virtual directory infrastructure. So, please stop by and visit with us if you plan to be in Munich for EIC 2010. Our experts will available to discuss your particular problem and help define a solution that's right for your unique environment. The conference will be held from May 4th through 7th at Forum am Deutschen Museum in Munich. See you there!

Jeff Zukowski

AuthorAdministrator | CommentPost a Comment |
Tuesday
Apr202010

An Invitation - Join Symlabs At TEC 2010 To Discuss Virtual Directories And FIM

DateTuesday, April 20, 2010 at 06:52PM

The Experts Conference 2010 will be held next week, and our CEO Antonio Navarro will be giving a presentation there entitled "Virtual Directories and FIM: A Match Made in Heaven?" on Tuesday, April 27th, at 2:45 PM. And, while you're at the conference, please stop by and visit with one of the Symlabs experts who will be on hand and more than happy to discuss virtual directories, or any other identity management subject, with you. We'll offer you a demo and show you how to apply Symlabs Virtual Directory Server, Symlabs LDAP Proxy, or Symlabs Federated Identity Suite to solve many of the problems that are now common in an identity infrastructure. We can also give you some good tips on how to put our new Symlabs Free LDAP Browser to work in a variety of creative ways.

Microsoft's Forefront Identity Manager is a very hot topic these days, so if you're one of the many looking for useful information to plan a deployment, this session should be quite helpful. Antonio has a keen understanding of the underlying technologies and standards for virtual directories and identity management in general, and he has a broad experience in the various products, architectures, and management techniques required to implement a successful infrastructure, so whether it's FIM, Active Directory, or some other identity or directory topic that has your interest, he can offer advice worth listening to.

The Experts Conference (TEC) 2010 will be held on April 25-28 in the JW Marriott Hotel Los Angeles at L.A. LIVE, Los Angeles, California, and the session that Antonio is addressing will be held in room FIM-2 on April 27th from 2:45 PM to 4:00 PM. This will be an important event for all of you who are interested in Microsoft identify technologies, and I hope to meet a lot of you there!

Jeff Zukowski

AuthorJeff Zukowski | CommentPost a Comment |
in ,
Page 1 2 3 4 5 ... 7 Next 5 Entries ยป