Open sso enterprise customer pitch

  • Published on

  • View

  • Download

Embed Size (px)


<ul><li><p>1OpenSSO Enterprise</p><p>Daniel RaskinSenior Product Line</p><p>1</p></li><li><p>2OpenSSO Enterprise</p><p>Buy one solution to solve ALL of your SSO problemsWeb access management, Federation, and Secure Web services</p></li><li><p>3OpenSSO Enterprise Model Purchase an OpenSSO </p><p>Enterprise perpetual license (formerly Access Manager), Sun Identity Management Suite subscription or Java Enterprise System subscription</p><p> Receive Support and indemnification on OpenSSO commercial builds and Express builds.</p><p> Customers choose whichever builds works best for them!</p></li><li><p>4OpenSSO Enterprise Options OpenSSO Express Build</p><p>&gt; A community build that has undergone extensive automated testing and moderate manual testing by Sun Quality Assurance Engineering Team.</p><p>&gt; Delivered every 3 months</p><p> OpenSSO Commercial Build&gt; A community build that has undergone extensive manual </p><p>and automated testing by Sun Quality Assurance Engineering Team.</p><p>&gt; Delivered every 12 15 months</p></li><li><p>5Solution: OpenSSO Web Access ManagementThree Tough Challenges. One Powerful Solution.</p><p> Centralized server configuration Centralized agent configuration Agent and proxy modes AAA Identity Services Embedded directory server for user store and policy store XACML support for standards-based policy management Consumes and translates 3rd party tokens from all major </p><p>WAM solutions</p></li><li><p>6Solution: OpenSSO FederationThree Tough Challenges. One Powerful Solution. The Fedlet, 8.5MB package that allows service providers to </p><p>create fully configured trust networks based SAML 2 in minutes</p><p> Multi-protocol Federation Hub, easily federate with any company regardless of what federation language they speak</p><p> Virtual Federation Proxy, incorporate any number of legacy authentications with a single instance of OpenSSO </p><p> Supports all major standards including SAML, WS-Federation, Liberty ID-FF, WS-Trust, WS-Security, and WS-Policy</p><p> Consumes and translates 3rd party tokens from all major WAM solutions</p></li><li><p>7Solution: OpenSSO Secure Web ServicesThree Tough Challenges. One Powerful Solution.</p><p> Only standards-based solution in the world to provide a pluggable, end-to-end secure web-services solution</p><p> Out -of-box tooling by Netbeans and Glassfish SecurityToken Service that can be deployed as an </p><p>Integrated, or standalone, solution Security Token Service that can handle token issuance, </p><p>validation and translation via WS-Trust Policy enforcement point plugins for Weblogic, WebSphere, </p><p>Tomcat and JBOSS </p></li><li><p>8Bonus: Entitlement Management Ability to protect resources and objects within them</p><p>&gt; Generic policy engine&gt; Policy Decision Point&gt; Policy Management Point&gt; Identity Web Services to invoke Authorization&gt; Supports Java, C, REST, SOAP and XACML</p></li><li><p>9Sun is Positioned in the Leaders Quadrant </p><p>The Magic Quadrant is copyrighted 10 November 2008 by Gartner, Inc. and is reused with permission. The Magic Quadrant is a graphical representation of a marketplace at and for a specific time period. It depicts Gartner's analysis of how certain vendors measure against criteria for that marketplace, as defined by Gartner. Gartner does not endorse any vendor, product or service depicted in the Magic Quadrant, and does not advise technology users to select only those vendors placed in the Leaders quadrant. The Magic Quadrant is intended solely as a research tool, and is not meant to be a specific guide to action Gartner disclaims all warranties, express or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose. The Magic Quadrant graphic was published by Gartner, Inc., as part of a larger research note and should be evaluated in the context of the entire report. The Gartner report is available upon request from Sun Microsystems. </p><p>Gartner Magic Quadrant for Web Access Management, Ray Wagner, Earl Perkins, Perry Carpenter, 10 November 2008</p></li><li><p>10</p><p>What's Next</p><p> Carrier-Grade Monitoring (Q1 2009) More Ease-of-Use Task Flows (Q1 / Q2 2009) SaaS Federation Task Flows (Q1 / Q2 2009) Entitlement Management (Q2 2009)</p></li><li><p>11</p><p>Carrier-Grade Monitoring (Q1 2009)</p><p> Working with key Telco companies to develop carrier-grade monitoring in OpenSSO</p><p> Will provide server level monitoring and management across entire OpenSSO Enterprise deployment&gt; Test agents to ensure they are responding to client </p><p>requests.&gt; Real-time of view of OpenSSO Deployment&gt; Quickly identify and address problems</p><p> Integrates with 3rd party monitoring and reporting tools</p></li><li><p>12</p><p>More Ease-of-Use Task Flows (Q1 / Q2 2009)</p><p> Protect a Resource Flow</p><p> Create a Realm Flow</p><p> Configure / Deploy and Agent Flow</p><p> Configure an Authentication Store</p><p> Configure an Instance</p><p> Select an Admin for a Realm</p></li><li><p>13</p><p>SaaS Federation Task Flows (Q1 / Q2 2009)</p><p> Provide simple task flows for configuring federated SSO with popular SaaS services</p><p> Focus on standards-based services rather than proprietary</p></li><li><p>14</p><p>Entitlement Management (Spring 2009) Extend OpenSSO to solve access management, </p><p>federation, secure web services and ENTITLEMENT MANAGEMENT.</p><p>&gt; Policy Engine Benchmark Millions of policies&gt; Killer Policy Management User interface&gt; Build as reusable composite service for RM and IM&gt; Policy attestation and entitlements warehouse</p><p> 3 +1 = 4 Tough Challenges. One powerful solution. </p></li><li><p>15</p><p> Easily embed policy management point and policy decision point as a composite, reusable service in Identity Manager, Role Manager, 3rd party application.</p><p> Allows for a single policy store and common user experience</p><p> Invoke EM web services using IDE of choice </p><p>Entitlement Management (Spring 2009)Composite, Reusable Service</p></li><li><p>16</p><p>OpenSSO: Latest Innovation Presto-Change-O Install</p><p>&gt; Embedded Glassfish&gt; JavaWebstart Installation&gt; Pre-configured&gt; One Click</p><p></p></li><li><p>17</p><p>Free Training Labs Five downloadable, self-paced labs </p><p>&gt; deploy two Apache Tomcat servers&gt; SSL-enable them&gt; install a software load balancer&gt; install OpenSSO into the environment&gt; configure for session failover</p><p> Includes virtual image containing OpenSolaris, Glassfish, OpenSSO and OpenDS&gt; Fast forward or rewind image using ZFS</p><p> Go to and click on Training</p></li><li><p>18</p><p>OpenSSO Community</p><p> In less than 2 years... &gt; 750+ project members at </p><p> &gt; ~15 external committers </p><p> Production deployments &gt; </p><p>250,000 customer profiles &gt; </p><p>OpenID for Sun employees &gt; </p><p>Foundation for fine-grained authorization </p></li><li><p>19</p><p>Thank You.</p><p>19</p><p>Daniel</p></li></ul>