MidPoint is a comprehensive, feature-rich identity management and governance platform. Since its beginnings, it was meant to be very flexible and customizable via configuration to allow various types of deployments. The flexibility, however, also brings complexity. Deployment challenges were often caused by the systems being integrated and their identity data. Even if midPoint features are Read more about MidPoint’s First Steps Methodology[…]
There’s a new guy in town. His name is MidPoint Advanced Customization training course. A brand new training course dedicated to more advanced topics that could not be covered by the predecessor – MidPoint Deployment Fundamentals training course. At first there was a workshop for midPoint, which gradually evolved into the full MidPoint Deployment Fundamentals Read more about A New Guy In Town (MidPoint Advanced Customization training course)[…]
This year (2017) was full of training courses. Literally, there was almost no month without any training. Some took place in our office in Bratislava, Slovakia, some were remote/online sessions, but most of them were onsite, which meant a lot of travelling. I travelled to Canada and United States, later also to Finland. I experienced my first transatlantic flight, Read more about 2017 – The Year of midPoint Training Courses[…]
Unix/Linux servers can be configured to authenticate and authorize against LDAP server, by using LDAP accounts and groups. With some Identity Management solutions you can put users to these groups, but you need to manage the groups by the native LDAP tools. This is not the case with midPoint! MidPoint allows you to create not only LDAP accounts, but also the groups so it can become the ultimate tool for IT administrators or even for users with limited IT skills, really simplifying the LDAP group management. […]
Many applications connected to LDAP use LDAP groups for authorization. With some Identity Management solutions you can put users to these groups, but you need to manage the groups by the native LDAP tools. This is not the case with midPoint! MidPoint allows you to create not only LDAP accounts, but also the groups so it can become the ultimate tool for IT administrators or even for users with limited IT skills, really simplifying the LDAP group management. […]
The organizational structure in midPoint does not always represent a typical enterprise. In case of multitenant setup in the cloud, the organization units represent “tenants” which are completely independent. In enterprise organizations, the sub-organizations and their members are usually readable (to some extent) to all members. In the multitenant setup must maintain tenant isolation. How can this be done using midPoint? […]
During the last weeks of 2015, the Evolveum team was partially “distributed” around the Europe. There were multiple conferences and similar public events and also two midPoint workshops led by me, in Switzerland and Germany. I used to lead a lot of trainings and workshops in Evolveum and also before, but the workshops are usually more challenging, especially when they are organized for the partners, not the end customers. The partners usually already have experience with different products and try to match the features during the courses. Their expectations are both specific to a project and also abstract – conceptual. MidPoint deployment workshop can be very effective way how to boost your midPoint knowledge in a couple of days.
The user naming attribute “name” is a string attribute and can be defined manually. MidPoint will ensure that the value of this attribute is unique. Although for small setups there is no problem with entering this attribute value manually, it can be usually defined by an expression based on various UserType object properties (attributes). In Read more about Different Naming Conventions For Different User Types[…]
So the last weekend was dedicated to IDM solution upgrade procedure – and it all went OK! After several months of continuous integration of new target systems and expressions and after weeks of integration and acceptance testing we got a green light and the upgrade was started. How does such upgrade look like? Is it Read more about Successful IDM solution upgrade[…]
When provisioning users in the multi-tenant environment, you have many organizations in your organization structure and your users belong to different organizations. Their access rights are combinations of roles AND tenants to which they belong. For example you can use a directory system, where users are provisioned, and assigned into groups, which are created and Read more about Working with multi-tenant roles[…]