doug ouzts partner management
TRANSCRIPT
Copyright © 2007 Condrey Corporation. All rights reserved. 1
Doug OuztsPartner Management & Training
Condrey Corporation
Empowering User Collaboration
Copyright © 2007 Condrey Corporation. All rights reserved. 2
Agenda• Background and the Challenges
• Current Workarounds
• The DocXXchanger Paradigm
• Empowering User Collaboration
• Solution Components
• Installation and Deployment
• Demo / Q&A
Copyright © 2007 Condrey Corporation. All rights reserved. 3
• Software development company focusing exclusively on directory-enabled & policy-based storage management
• U.S. Corporation based in Greenville, South Carolina.
• Customers in 33 countries representing General Commercial, Fortune 1000, Government, Military, Higher-Ed, K-12, and Healthcare.
• Novell Engineering Partner … Novell Storage Manager™
• Microsoft Empowered Development Partner
• Leader in Identity-driven & Policy-based Storage
• Enterprise level customers
• Partner Driven (NSM, Kanaka for Mac, IUAdmin, DocXchanger)
Condrey Corporation
Copyright © 2007 Condrey Corporation. All rights reserved. 4
Background and Collaboration Challenges
Copyright © 2007 Condrey Corporation. All rights reserved. 5
The Landscape
• 85% of data existing on networks in the world today is unstructured. (and most of that is on traditional file servers)
• Users need help managing unstructured data.• Document management has a bad reputation
(big and unwieldy).• Every organization and every user performs
document management tasks every day. (whether they want to or not)
Copyright © 2007 Condrey Corporation. All rights reserved. 6
Baseline Storage Management
Personal StorageCollaborative Storage
English Dept
Yearbook
Administrator manually creates, moves and cleans up collaborative and personal storage
Copyright © 2007 Condrey Corporation. All rights reserved. 7
Personal StorageCollaborative Storage
English Dept
Yearbook
Novell Storage ManagerNovell Storage Manager
Administrator installs Novell Storage Manager to automate collaborative, class and personal storage based on policies
Automated Storage ManagementNovell Storage Manager
Copyright © 2007 Condrey Corporation. All rights reserved. 8
Collaboration Challenges
Personal StorageCollaborative Storage
English Dept
Yearbook
Cathy
Bill
Tom
Copyright © 2007 Condrey Corporation. All rights reserved. 9
Properties of Dynamic Collaboration
• Intended sharing duration is variable.• Only a few documents may need to be
shared (scope is likely limited).• Access rights need to be flexible and
driven by the user.• Delays are not an option. • In the end, only the user knows their
collaboration needs at any point in time.
Copyright © 2007 Condrey Corporation. All rights reserved. 10
Collaboration Challenges• Ad hoc collaboration with other users on the network is
hard for users.
• Collaborating with people outside of the organization is very hard for users.
• The network admin has to be involved to enable any type of new collaboration.
• Sometimes users just need to publish information… other times they need people to be able to perform updates.
• Delays are not an option
• Universal problem…but there are workarounds.
Copyright © 2007 Condrey Corporation. All rights reserved. 11
Current Workarounds
Copyright © 2007 Condrey Corporation. All rights reserved. 12
#1 Email Attachments
Copyright © 2007 Condrey Corporation. All rights reserved. 14
#2 Have the Admin Help
Have the Network Admin:
• Set up a group
• Create storage space on the network.
• Give rights as appropriate
• Create accounts for external users.
• Get everything cleaned up when you are done.
Copyright © 2007 Condrey Corporation. All rights reserved. 15
#3 Find a Place on the Web
• Find a place on an external website …probably outside the organization.
• Remember to Upload/Download stuff after you work on it.
• Hope that the security officer or your boss doesn’t mind.
Copyright © 2007 Condrey Corporation. All rights reserved. 16
The DocXXchanger Paradigm
Copyright © 2007 Condrey Corporation. All rights reserved. 17
Basic Premise Set• There is a need to overcome the previous
mentioned challenges
• People want less hassle.
• It is best to share things from existing working locations…no movement of files.
• Nobody wants to change how they do things…Evolution vs Revolution
Copyright © 2007 Condrey Corporation. All rights reserved. 18
The Solution lies in the Network• The organizational network already exists.• It is funded and managed.• The data is already there.• The users are already there.
There is no need to fund and build a new infrastructure and migrate data.
The solution is to empower the users on the network.
Bottom Line!
Copyright © 2007 Condrey Corporation. All rights reserved. 19
Solution: DocXXchanger• Empowers end-users to easily share existing network
files and folders with colleagues both inside and outside the organization.
• Governed by security defined by the administrator.• Eliminates file sharing via e-mail attachments• Empowers teams to create their own collaborative
storage space• Both web and OS-integrated clients give flexibility and
choice.• Leverages existing eDirectory and storage
infrastructure
Copyright © 2007 Condrey Corporation. All rights reserved. 20
Defining the Players
Administrator
Provider
Internal Consumers
External Consumers
Defines policies governing what files and folders can be shared (internally and externally)
Internal faculty, staff or students that need to provide files or folders for sharing.
Internal faculty, staff or students that need to share and access files or folders.
Colleagues at other school districts, colleges, parents, board members, etc that need access to the shared files or folders.
Copyright © 2007 Condrey Corporation. All rights reserved. 21
XX
eDirectory
Provider
Home Directory
Shared Storage
AdministratorIdentity Information, Authentication and Data Store
Empowered Users Collaborating
NCP AFPCIFS
Copyright © 2007 Condrey Corporation. All rights reserved. 22
XXProvider
Administrator
The administrator defines global rules & policies governing file & folder sharing for internal and external consumers
Empowered Users Collaborating
eDirectory
Home Directory
Shared Storage
NCP AFPCIFS
Copyright © 2007 Condrey Corporation. All rights reserved. 23
XX
eDirectory
Provider
Administrator
The provider selects files or folders to be shared based on defined policies
Empowered Users Collaborating
Home Directory
Shared Storage
NCP AFPCIFS
Copyright © 2007 Condrey Corporation. All rights reserved. 24
XX
eDirectory
Provider
Administrator An e-mail is sent to each consumer containing a ticket and file link
Corporate Mail Server
Internal Consumer
External Consumer
Empowered Users Collaborating
Home Directory
Shared Storage
NCP AFPCIFS
DXV
Copyright © 2007 Condrey Corporation. All rights reserved. 25
XX HTTPS
eDirectory
Provider
Administrator
Internal consumers have direct access or ticket based access via a web browser
Empowered Users Collaborating
Home Directory
Shared Storage
NCP AFPCIFS
NCP AFPCIFS
Internal Consumer
Copyright © 2007 Condrey Corporation. All rights reserved. 26
Internal Consumer
External Consumer
XX
eDirectory
Provider
Administrator
External consumers have ticket based access via a web browser
HTTPS
Empowered Users Collaborating
Home Directory
Shared Storage
NCP AFPCIFS
NCP AFPCIFS
Copyright © 2007 Condrey Corporation. All rights reserved. 27
Security
Life as an Administrator
Copyright © 2007 Condrey Corporation. All rights reserved. 28
Mental Security Check
• In my environment, is there anything to stop someone from copying data from a server to a laptop or USB drive, taking it home, and then distributing the data over the Internet?
• Can users on my network send e-mail attachments today?
• Can I do anything to stop them?
• When they send e-mail attachments, can I stop the recipient from forwarding them on to any person they choose?
Before we proceed, ask yourself these questions and then, as we go through the rest of the presentation, continue to consider your answers.
Conclusion: In almost all environments, when someone is given rights to data, they are being trusted with it’s safekeeping based on common sense and ethics. Any other conclusion is just kidding yourself.
Copyright © 2007 Condrey Corporation. All rights reserved. 29
Administrator
• Defines the limits and the characteristics under which DocXXchanger operates using a browser-based Administrative interface.
• Defines rules for files & folders allowed for internal sharing
• Defines exclusion rules for critical data• Defines policy governing external collaboration
Copyright © 2007 Condrey Corporation. All rights reserved. 30
Admin Interface - Security
Control who may be Consumers.
Enable/Disable external Consumers.
Defined rights.
Define what may and may not be shared through the system.
Describe rights needed to create sharing links.
Copyright © 2007 Condrey Corporation. All rights reserved. 31
Life as a Provider
Copyright © 2007 Condrey Corporation. All rights reserved. 32
Provider
• Selects files and/or folders to share and who to share them with.
• Has a choice of interfaces:– Native Platform OS Integrated Provider Client
(for direct access)– Web Browser Provider Interface
(may be used from local or remote locations)
Copyright © 2007 Condrey Corporation. All rights reserved. 33
Provider: Native Platform Interface
• Integrates with the OS.
• Behaves in a manner native to the platform and it’s users.
• Windows XP and Vista ready now.
• Linux desktop and Apple® Mac OS X are scheduled to be released in the very near future.
Copyright © 2007 Condrey Corporation. All rights reserved. 34
Windows Provider Client
Copyright © 2007 Condrey Corporation. All rights reserved. 35
Windows Provider Client
Copyright © 2007 Condrey Corporation. All rights reserved. 36
Provider: Optional Web Interface
• User authenticates contextlessly and is shown a list of storage resources based on his identity.
• User browses through the file system to the desired file or folder and clicks the Share link.
Copyright © 2007 Condrey Corporation. All rights reserved. 37
Provider: Optional Web Interface
Copyright © 2007 Condrey Corporation. All rights reserved. 38
Life as an Internal Consumer
Copyright © 2007 Condrey Corporation. All rights reserved. 39
Internal Consumer• A user in the same organization and network as
the Provider.• Uses files and/or folders shared by a Provider.• Has a choice of interfaces:
– Native Platform OS Integrated Application (for direct access)
– Web Browser Consumer Interface(may be used from local or remote locations)
– A thin remote client Explorer-like application that supports drag and drop of files and folders over an HTTPS connection. (near future)
Copyright © 2007 Condrey Corporation. All rights reserved. 40
Internal Consumer Notification
• Each consumer receives notification of a new sharing link via e-mail from the DocXXchanger server.
• Most any mail client is supported.• The message contains:
– Information from the Provider about the data.– A ticket-based URL for remotely accessing the storage
via a browser– A small XML file attachment (.DXV file) for accessing the
shared storage directly.– Legal or other formatting information derived from a
system-defined e-mail template.
Copyright © 2007 Condrey Corporation. All rights reserved. 41
Direct Access
Copyright © 2007 Condrey Corporation. All rights reserved. 42
Direct Access Windows Name Space Extension
• Integrates with Windows Explorer
• Retains DXV linkage information for the life of the ticket so that the user does not have to go back to the notification mail message repeatedly.
• Provides direct access into the storage.
• Integrates with Application Open and Save As dialogs for a seamless user experience.
Copyright © 2007 Condrey Corporation. All rights reserved. 43
.DXV Files
• DXV (DocXXchanger Vector) files are small XML files that describe the ticket associated with the shared link.
• The client application registers with the OS so that when the user clicks on the attachment, the XML file is used to have the client directly open the shared storage.
• Each DXV file includes path information relative to various storage access protocols.
• This allows a notification email to be used by any email client on any platform without regard for file system access protocol.
Copyright © 2007 Condrey Corporation. All rights reserved. 44
Remote Web Access
Copyright © 2007 Condrey Corporation. All rights reserved. 45
Remote Web Access
Copyright © 2007 Condrey Corporation. All rights reserved. 46
Write Access
Copyright © 2007 Condrey Corporation. All rights reserved. 47
Life as an External Consumer
Copyright © 2007 Condrey Corporation. All rights reserved. 48
External Consumer
• A user outside of the organization and network of the Provider.
• Uses files and/or folders shared by a Provider.
• Uses a Web Browser-base Consumer interface for accessing the storage.
Copyright © 2007 Condrey Corporation. All rights reserved. 49
External Consumer Notification
• Each consumer receives notification of a new sharing link via e-mail from the DocXXchanger server.
• Most any mail server and client are supported.• The message contains:
– Information from the Provider about the data.– A ticket-based URL for remotely accessing the storage
via a browser– Legal or other formatting information derived from a
system-defined e-mail template specialized for external consumers.
Copyright © 2007 Condrey Corporation. All rights reserved. 50
Remote Web Access
Copyright © 2007 Condrey Corporation. All rights reserved. 51
Remote Web Access
Copyright © 2007 Condrey Corporation. All rights reserved. 52
Remote Web Access
Copyright © 2007 Condrey Corporation. All rights reserved. 53
Write Access
Copyright © 2007 Condrey Corporation. All rights reserved. 54
Installation and Deployment
Copyright © 2007 Condrey Corporation. All rights reserved. 55
Provider Architecture
Provider Web Interface (external)
RIA Interface (internal)
Corporate Mail Server
Internal Consumer
External Consumer
Mail Template
HTTPS
XML/HTTPS
XX
eDirectory
Copyright © 2007 Condrey Corporation. All rights reserved. 56
Overall System Architecture
Provider
Internal Consumer
External Consumer
Web Interface (external)
RIA Interface (internal)
XX-Server-ServerProvider
HTTPS InterfaceSMTP
Client SubSys
TicketingSubsys
Timed ACLSubSys
ConsumerHTTPS Interface
Identity Information & AuthenticationeDirectory
Copyright © 2007 Condrey Corporation. All rights reserved. 57
Integration with eDirectory• DocXXchanger Tickets are stored in
eDirectory as objects in a designated Ticket Container.
• The system is self-maintaining.• Schema extensions are required to create
attributes and definitions for 3 classes:– Ticket Container– Ticket– Server Proxy
Copyright © 2007 Condrey Corporation. All rights reserved. 58
Traditional Installation
Install on any server in the Tree
XX
Production Tree
XX(Clustered)
Copyright © 2007 Condrey Corporation. All rights reserved. 59
Cross-Tree Installation
Install on a server in a utility tree
Production Tree
XX
Copyright © 2007 Condrey Corporation. All rights reserved. 60
Soft Appliance Deployment
Delivered as a set of clustered VMs (future)
Production Tree
VM
VM
XX
Copyright © 2007 Condrey Corporation. All rights reserved. 61
Hard Appliance Deployment
Clustered VMs on dedicated hardware (future).
Production Tree
VM
VM
XX
Copyright © 2007 Condrey Corporation. All rights reserved. 62
Empowering User Collaboration
Q & A
HTTP://WWW.CONDREYCORP.COM
Copyright © 2007 Condrey Corporation. All rights reserved. 63
Kanaka for MAC OSX Condrey Corporation
Identity-Driven Storage Access
Copyright © 2007 Condrey Corporation. All rights reserved. 64
Kanaka for MAC OS X – Condrey CorporationIdentity-Driven Storage Access for Mac OS X
• eDirectory Plug in for Mac OS X
• Developed with Apple Engineering
• Authentication & Single Sign on to MAC OS X and Novell Network
• Automatically mount users home directory based on Identity
• Automatically mount collaborative storage based on Identity
• End User Storage Dashboard and Password Change functionality
http://www.condreycorp.com
Copyright © 2007 Condrey Corporation. All rights reserved. 65
Kanaka for MAC OS X Identity-Driven Storage Access for Mac OS X
eDirectory
Copyright © 2007 Condrey Corporation. All rights reserved. 66
Kanaka for MAC OSXStudent View – Home Directory
Copyright © 2007 Condrey Corporation. All rights reserved. 67
Kanaka for MAC OSXStudent View – English Class
Copyright © 2007 Condrey Corporation. All rights reserved. 68
Kanaka for MAC OSXTeacher View – English Class Folders
Copyright © 2007 Condrey Corporation. All rights reserved. 69
Condrey Corporation 125 The Parkway, STE 500 Greenville, SC 29615 USA Tel 864-329-8528 www.condreycorp.comDocument Version 0.7. Copyright © 2007 Condrey Corporation. All Rights Reserved. Condrey Corporation, the Condrey Corporation “C’s” logo, DocXchanger, and File System Factory are trademarks of Condrey Corporation in the United States and other jurisdictions. Novell and NetWare are registered trademarks of Novell, Inc. Microsoft and Microsoft Windows are registered trademarks of Microsoft Corporation. Linux is a registered trademark of Linus Torvalds. Apple, Macintosh, and Mac OS X are registered trademarks of Apple Computer, Inc. All other marks and names mentioned herein may be trademarks of their respective companies.