Hi Francisco, In fact, I'm looking for OpenSource products because I have finished a project for a big company (I'm leaving tomorrow). I didn't integrate a market solution, but I did it by myself. I developped a complete provisionning solution with "realtime" connectors (active waiting on events) with referential realtime replication and aggregation computations. I have developped this solution during 4 years. This is now a huge infrastructure with 15 Java connectors (on DB, LDAP, UNIX, SAP) and 120 Perl connectors (LDAP, CSV, TXT). With modesty, my system has been audited by specialists, and, they said it is very competitive on functionnal and technical aspects. But, it has been developped in a final client way. Resuable but not so much. Adaptable for sure ! I know all the defaults of my solution even if it's efficient. That's why I'll looking for a well coded opens source solution. Anyway, I'm trying to share my experience and learn on a cleaner and sexy project as Syncope.
First, I decided to propose my implementation (refactoring) of my system in OpenSource perspective. But I think about it in a different way as I'm a OpenSource "Militant". And I came to Syncope. So I'm really new to Syncope. Just started the analysis. The provisioning function in my company was not well known for end users.It is just a technical part of our IAM. And they use a high level abstraction of the system in Third Party Applications. An this pattern must be shared by a lot of big centralized companies and administrations. Do you think you could be interested in proposals about developing third party applications as part of Syncope with new functionnalities ? Examples : -> Implementing security perimeter A security administrator is managing a perimeter. He is responsible of users in this perimeter. -> Recertification of identities and access roles. Not sure to be very clear in my question. But I'm trying to understand if Syncope will evolve in a way that non IT administrator will have the capability to give and withdraw rights without knowing the technical layer. Like : I'm a bank agency manager. I'm responsible for security administration for 5 persons. I allow a composed business role like a package attached related to the function of the guy. Finally, I'm ready to help on syncope if you need. Regards, Bruno 2014-05-27 8:51 GMT+02:00 Francesco Chicchiriccò <[email protected]>: > On 26/05/2014 20:40, Bruno SyncopeDev wrote: > > Hi Francisco, > > > Hi Bruno, > > > Thanks a lot for you reply. I read the nlight ressources on the subject > a couple of months ago when I thought OpenIDM will still be OpenSource in > right terms. > Anyway, I seems there is another OpenSource project called MidPoint by > Evolveum. > I don't have any information about the stability of those business model > : will they still be OpenSource ? etc... > > > Eh eh eh, that's one of the reasons why Syncope is a project at The Apache > Software Foundation... > > > But the support of this product must be expensive. > > Anyway, What surprising me, is the fact that there is no implementation > on common business process proposed in Syncope. Maybe I'm wrong ? > What if you propose some kind of business patterns as the Third party > Applications ? > > > Could you please indicate some samples? > > > The provisioning system is something very technical. But each IAM > solutions is shy to propose high level scenarios with delegated > administrations or dynamic role base management. > Isn't there a lack on this point ? > What is your vision about that ? > > > I am not sure we are talking of something that you can decently > generalize: in my experience, even though some reference patterns are > available, implementing a IAM solution is often more a tailor attach on > customer's infrastructure than a general, repeatable and fully standardized > process. > > Actually, this fact underlies most of the architectural choices in > Syncope, which is extensible and fully customizable by default. > > Regards. > > > 2014-05-26 9:38 GMT+02:00 Francesco Chicchiriccò <[email protected]>: > >> On 26/05/2014 00:54, Bruno SyncopeDev wrote: >> >>> Hi, >>> >>> Do you have any resources/numerics about the integration of Syncope for >>> clients ? >>> I'm also interested in load test results or even benchmarks. >>> >>> What about the position of Syncope regarding others IAM solutions ? >>> OpenIDM, OIM (Oracle), SailPoint etc... >>> Is there somewhere a document that presents feature and technical gaps >>> between those different solutions ? >>> >>> I'm trying to find arguments to focus on pros of Apache Syncope ? >>> >> >> Hi Bruno, >> AFAIK the only reference for organizations that are using Apache Syncope >> in their environments is >> >> http://syncope.tirasa.net/success-stories.html >> >> e.g. a page on my company's support site for Apache Syncope. >> >> I know that some of such deployments are running with ~1 million users, >> but I don't have any more insight. >> >> >> Some Apache Syncope key features are reported in >> >> http://syncope.apache.org/features.html >> >> but I agree it is very little detail in there. >> >> >> About comparison with other Open Source IAM solutions, I can only find >> >> http://www.nlight.eu/documents/open-source-idm/ >> >> which provides some interesting points but is either quite outdated and >> also non-objective, being redacted by one of solutions' (MidPoint) author - >> as the disclaimer says. >> >> >> Generally speaking, some "fact sheets" including comparison with (at >> least) other Open Source IdM solutions could be highly desirable, but I >> don't see any availability for this in the short term. >> >> Naturally, should you ask my opinion, I am convinced that Apache Syncope >> is the most complete, scalable and feature-rich Open Source IdM out there, >> especially because it is probably the only one which is *actually* open. >> >> Regards. >> > -- > Francesco Chicchiriccò > > Tirasa - Open Source Excellencehttp://www.tirasa.net/ > > Involved at The Apache Software Foundation: > member, Syncope PMC chair, Cocoon PMC, Olingo > PMChttp://people.apache.org/~ilgrosso/ > >
