Recently I joined ForgeRock as a senior consultant. After almost 15 years in the ops and integration world, working with SiteMinder, a bunch of peers have been asking me how SiteMinder compares to OpenAM and how they differ. So, now as a fully biased ForgeRock employee, I am documenting the process of translating that SiteMinder suite knowledge into OpenAM.
In a series of blogs I will describe OpenAM from the viewpoint of a SiteMinder Admin, mainly myself, learning the similarities and differences as one with such background wishes to quickly come up to speed with ForgeRock’s OpenAM platform. The scope will not be to compare point by point every single feature of SiteMinder and OpenAM, but will be an introduction to OpenAM by deployment and integration of a sample app.
In a series of blogs I will describe OpenAM from the viewpoint of a SiteMinder Admin, mainly myself, learning the similarities and differences as one with such background wishes to quickly come up to speed with ForgeRock’s OpenAM platform. The scope will not be to compare point by point every single feature of SiteMinder and OpenAM, but will be an introduction to OpenAM by deployment and integration of a sample app.
The Basics - Infrastructure Overview and differences
SiteMinder: SiteMinder requires a JDK for installation and an ldap instance to configure as the policy store. In addition, a separate install of an app server (like tomcat) and deployment of the SiteMinder UI is needed. It is then configured against the SiteMinder Policy server in order to manage the environment.
OpenAM: OpenAM requires a Java Application server, like tomcat, to deploy the openAM.war file. In addition, an ldap instance is used as a configuration policy store.
One key difference of the OpenAM platform will be the amount of built-in services that are available. Not, integrated, but core service capabilities of the OpenAM product. For example, if you require federation services, it is an additional installation of a servlet or app server, and a session DB or CA Directory for SiteMinder to offer the capability.
If you also require Advanced Authentication and a Risk engine with OTP features, SiteMinder requires the addition of the CA Strong Authentication (Arcot) components. This requires 3 installations, StrongAuth, RiskAuth, and a customized adapter deployed on a java app server. An Oracle or MS SQL DB is also required for user registration and profile information.
Finally, if you need to expose these services via a REST interface, none of the components offer this natively. CA Strong Auth exposes its services via WSDLs. In order to abstract all these services through a REST interface, you can deploy a CA Layer7 soft appliance. It is an API gateway that allows you to expose SiteMinder authentication via an embedded agent on the gateway. You can also translate the Strong Auth WSDLs as REST endpoints. Layer7 can be deployed as a hardware or soft appliance as well as built on your own platform. It is made up of a web app deployed on tomcat with a MYSQL embedded DB.
This diagram illustrates the problem with acquisition architecture. Your infrastructure sprawl get big quickly. With no redundancy, you are already looking at a sizable footprint of VMs, DBs, and App Servers; not to mention the firewall rules and VIPs you will need as part of the inter-component communications. I deployed this in my previous position. You quickly get into scalability and APM issues.
By comparison, OpenAM is a single deployed war file that contains all of these services and all accessible via RESTful interface.
Try it for yourself. Download the software at https://forgerock.org/downloads/ and discover the differences and simplicity of the ForgeRock platform.
Really nice blog,i enjoyed your infomations. Thank you and i will expect more in future.
ReplyDeleteJAVA Training in Chennai
JAVA Training in Velachery
Software testing training in chennai
Android Training in Chennai
Selenium Training in Chennai
Hadoop Training in Chennai
JAVA Training in Chennai
Java Training in Tnagar
Big data is a term that describes the large volume of data – both structured and unstructured – that inundates a business on a day-to-day basis. big data projects for students But it’s not the amount of data that’s important. Project Center in Chennai It’s what organizations do with the data that matters. Big data can be analyzed for insights that lead to better decisions and strategic business moves.
DeleteSpring Framework has already made serious inroads as an integrated technology stack for building user-facing applications. Corporate TRaining Spring Framework the authors explore the idea of using Java in Big Data platforms.
Specifically, Spring Framework provides various tasks are geared around preparing data for further analysis and visualization. Spring Training in Chennai
The Angular Training covers a wide range of topics including Components, Angular Directives, Angular Services, Pipes, security fundamentals, Routing, and Angular programmability. The new Angular TRaining will lay the foundation you need to specialise in Single Page Application developer. Angular Training
Big data is a term that describes the large volume of data – both structured and unstructured – that inundates a business on a day-to-day basis. big data projects for students But it’s not the amount of data that’s important. Project Center in Chennai It’s what organizations do with the data that matters. Big data can be analyzed for insights that lead to better decisions and strategic business moves.
DeleteSpring Framework has already made serious inroads as an integrated technology stack for building user-facing applications. Corporate TRaining Spring Framework the authors explore the idea of using Java in Big Data platforms.
Specifically, Spring Framework provides various tasks are geared around preparing data for further analysis and visualization. Spring Training in Chennai
The Angular Training covers a wide range of topics including Components, Angular Directives, Angular Services, Pipes, security fundamentals, Routing, and Angular programmability. The new Angular TRaining will lay the foundation you need to specialise in Single Page Application developer. Angular Training
The article is so informative. This is more helpful for our
ReplyDeletebest software testing training in chennai
best software testing training institute in chennai with placement
software testing training
courses
software testing training and placement
software testing training online
software testing class
software testing classes in chennai
best software testing courses in chennai
automation testing courses in chennai
Thanks for sharing.
This is the first & best article to make me satisfied by presenting good content. I feel so happy and delighted. Thank you so much for this article.
ReplyDeleteLearn Best Digital Marketing Course in Chennai
Digital Marketing Course Training with Placement in Chennai
Best Big Data Course Training with Placement in Chennai
Big Data Analytics and Hadoop Course Training in Chennai
Best Data Science Course Training with Placement in Chennai
Data Science Online Certification Course Training in Chennai
Learn Best Android Development Course Training Institute in Chennai
Android Application Development Programming Course Training in Chennai
Learn Best AngularJS 4 Course Online Training and Placement Institute in Chennai
Learn Digital Marketing Course Training in Chennai
Digital Marketing Training with Placement Institute in Chennai
Learn Seo Course Training Institute in Chennai
Learn Social Media Marketing Training with Placement Institute in Chennai
Hard work is very essential but smart work is much needed. The CA coaching programme provided by our institution gives you more stuff and ensures that you can build your profile with the tag CA along with your name
ReplyDeleteCA Intermediate Classes in Chennai
CA Intermediate Institute in Chennai
CA Final Coaching Institute
CA Final Classes
Fundazone offers the best solutions to overcome the difficulties in clearing the ca exams and thus making a quality Chartered Accountants
ReplyDeleteCA Academy In Chennai
CA Coaching Institute In Chennai
CA Institute In Chennai
Best CA Academy In Chennai
Enjoyed reading your guide. Very detailed and professionally written.
ReplyDeleteGreat Article. Thank you for sharing! Really an awesome post for every one.
ReplyDeleteProject Centers in Chennai
JavaScript Training in Chennai
Final Year Project Domains for IT
JavaScript Training in Chennai
Excellent blog, it's so informative, knowledgeable. I encourage your blog, I expect more useful blog from your side.
ReplyDeleteDevOps Training in Chennai
DevOps Training in Bangalore
Best DevOps Training in Bangalore
DevOps Course in Bangalore
DevOps Training Bangalore
DevOps Training Institutes in Bangalore
DevOps Training in Marathahalli
AWS Training in Bangalore
Data Science Courses in Bangalore
PHP Training in Bangalore
nice article and its very informative...Thanks for sharing...
ReplyDeleteMobile Testing Training in Chennai
Mobile Testing Training
Mobile Application Testing Training
Mobile Testing Training in Velachery
Mobile Testing Training in Tambaram
Manual Testing Training in Chennai
LoadRunner Training in Chennai
Photoshop Classes in Chennai
Spring Training in Chennai
QTP Training in Chennai
ReplyDeleteGreat read! Thank you for such useful insights. Visit here for advanced technical courses on FORGEROCK ONLINE TRAINING