際際滷

際際滷Share a Scribd company logo

Ubisecure release spring_2014_use cases_sls

Charles Sederholm
Charles Sederholm

The document describes new features in Ubisecure Solutions' Spring 2014 release, including improved backend querying, extended REST APIs, new discovery and template APIs, improved SAML integration configurability, Office 365 integration, SSO health checking, and improved user listing and entitlement capabilities in CustomerID. Key new features include ways to customize login UIs, embed authentication in external apps, enrich user data from backends, and acquire enterprise customers from Office 365 organizations.

1 of 31
UBISECURE SOLUTIONS, INC. Ubisecure Release Spring 2014 New features and Use cases
New features in Spring 2014 release Ubisecure Backend Query new improved features e.g. XSLT based transformation API Now extended Ubisecure REST API for embedding calls in UIs of external systems and services such as MS Dynamics, Salesforce New Ubisecure Discovery UI API New Ubisecure Template API New improved and extended configurability of SAML-based integration Microsofts Office365 cloud service interop and co-operation New Ubisecure SSO Health Check Listing role and attribute based authorized users Entitlements also based on role
New features in Spring 2014 release (details) Ubisecure Backend Query new improved features e.g. XSLT based transformation API for response to ease backend integrations e.g. to various CRM systems or similar Now extended Ubisecure REST API calls to Ubisecure products can be embedded in UIs of external systems and services so that for instance new users to extranet services can be invited direct from CRMs such as MS Dynamics, Salesforce New Ubisecure Discovery UI API offers possibility to create dynamic login UIs and dynamically control the user experience of the login New Ubisecure Template API offers possibility to create customer-specific login UIs and e.g. embedding the login prompt in UI of other service New improved and extended configurability of SAML-based integration offers possibility to adapt to also so called non-typically implemented and behaving services (e.g. some cloud-services) where changes in the external service is not possible Microsofts Office365 cloud service can now be used as registration channel for inflow of new users and as external login service to access other external services through federation New Ubisecure SSO Health Check service enables verifying that the Ubisecure service is functioning properly e.g. in Cloud based installations or other demanding environments New Ubisecure CustomerID release allows listing role and attribute based authorized users also when they have inherited the entitlement based on their service role New Ubisecure CustomerID release enables easy assigning of entitlements also to users in services that through their role are part of the organization or the virtual organization
Improved and extended Ubisecure Backend Query
Ubisecure Backend Query Authenti- cationService User data Registration + enrichment Portal CustomerID SSO Trust CRM XSLT Backend System(s) Behind ESB ESB (optional) External data source w/ identity related attributes etc information User Information Enrichment from external data sources By configuration. No programming required)
Jeremy Mills Contact Person City Group Inc. CRM Extranet Portal AuthenticateCreate UserID 3 Self-registration with Ubisecure CRM Query Jeremy self- registers to extranet portal 1 2 CustomerID enriches user roles using account information from CRM (with XLST transformation done to CRM query response) Next time and onwards Jeremy uses his preferred login method when entering service XSLT
Jeremy Mills Contact Person City Group Inc. AuthenticateSelf-service workflow 3 Use workflows for additional role enrichment Jeremy authenticates to workflow 1 Extranet Portal CRM Backend Query with XLST transformation done to CRM query response Jeremy uses his new roles in the extranet portal CRM 2 XSLT
Extended Ubisecure REST API
Invite new user while using CRM interface with the CustomerID REST API functions
Ubisecure Discovery UI API
Discovery UI API Enable third-party implementations of authentication method selection user interfaces dynamic handling of identity provider selection Example Mobile application selection Java-script method selection implementation in SP application
Example result of using Discovery UI API Drop down menu for authentication selection Placement of items in login screen Tailored items in login screen
Example calls when using Discovery UI API Authenti- cation Service REST API What languages are supported in the authentication service? What brand & template should be used in the login screen for this service in the corporate cloud setup? Which authN service logo(s) should be used in the login screen for this service? Service Development work is saved as centralized functionalities can be called up Operational work in version upgrades is saved as REST API is standardized and consistently backwards compatible
Using Discovery UI API in dynamic cloud service branding use cases Authenti- cation Service REST API What languages are supported in the cloud service and the authentication service? What brand & template should be used in the login screen for this service in the cloud service setup? Service Development work is saved as centralized functionalities can be called up Operational resources are saved as centralized functionalities can be used: Same authN service may serve multiple services and brands
Ubisecure Template API
Ubisecure Template API Ubisecure Template API allows for a consistent and safe reference method to elements required for providing custom user experiences Examples Dynamically showing currently supported authentication methods within an third-party application Possibility to create customer-specific login UIs Embedding the login prompt in UI of other service Benefits Reducing redirections Faster user experience Consistent API across future product releases
Example calls when using Template API Authenti- cation REST API Mobile user gets responsively designed narrow width login for mobile (template ), with selection of authN methods suitable for mobile Laptop user gets responsively designed normal width login for desktops (template) Service Operational work in version upgrades is saved as REST API is standardized and consistently backwards compatible
Example of customer-specific login UI
Improved and extended configurability of service and applications integration
Single Sign-On to SaaS Services Service 1 Log In Service 3 Service 4 User data Use preferred login Direct integration with improved SAML 2.0 interop
Out-of-the-box Integration to Your Services More integrations expected due to integration capabilities * *) Examples of existing integrations, not an all inclusive list Hundreds of services and applications supported. Number continuously growing. Easy for integrators and service providers to verify and add more here.
O365 and Google Apps for Business + other cloud
Two major Cloud trends 5 Million companies! +5000 every day 3-5 Million companies! Your company should benefit from this!
A major Cloud trend also in the Nordics Globally 3-5 Million companies! Your company should benefit from this! Sweden 100 000+ companies! Finland 50 000+ companies!
New enterprise customers from Office365 easily and fast Fast & convenient B2B customer acquisition All or part of the users registered at once Registration & new customers from Office365 organizations + Enrichment with business oriented information *) O365 or any other Azure application *) Authenti- cation CRM Service User data
Convenient and quick enterprise customer registration and acquisition from Windows Azure Registration from Azure + Enrichment with business information + Verifications + Approvals Registration + enrichment *) O365 or any other Azure application John Smith Name: John Smith Customer: Acme Corp Role: Purchase Manager Authorization: BU Management Andrew Blake Tim Cook Purchase Manager Accountant Department Head Acme Corp *) Authenti- cation CRM Service User data UBISECURE
Platform for large volume services e.g. in Cloud
SSO Health check Easy monitoring with external HTTP Probe https://login.smartplan.eu/uas/ping 200 OK Check connectivity to Ubilogin Directory
Ubisecure CustomerID basic improvements
CustomerID improvements List organization users via role membership Mandate delegation via role membership
Ubisecure Solutions, Inc. firstname.lastname@ubisecure.com FINLAND: Tekniikantie 14, FIN-02150 Espoo, Finland, tel +358 46 7121100 SWEDEN: WTC, Klarabergsviadukten 70, Box 70396, SE-10724 Stockholm, Sweden, tel +46-8-5063 6178 www.ubisecure.com ubisecure www.smootherinternet.com = www.ubisecure.com/blog Ubisecure paves the way for a smoother and safer Internet. Ubisecure software products enable new online business concepts and speed the growth of existing web-based operations by joining separate sites and services into larger trusted areas. The innovative products allow internet users to flexibly and securely move between online services without encountering repeated login prompts. Ubisecure maintains an extensive network of partners that offer organizations advice, consulting and technical services; and provides high-level training in secure online business through the widely appreciated Ubisecure IAM Academy. Founded in 2002 in Finland, Ubisecure Solutions Inc. is a pioneering provider of standardized identity and access management solutions. For more information, please visit www.ubisecure.com. THANK YOU FOR YOUR ATTENTION. PLEASE CONTACT US AT:

More Related Content

Ubisecure release spring_2014_use cases_sls

  • 1. UBISECURE SOLUTIONS, INC. Ubisecure Release Spring 2014 New features and Use cases
  • 2. New features in Spring 2014 release Ubisecure Backend Query new improved features e.g. XSLT based transformation API Now extended Ubisecure REST API for embedding calls in UIs of external systems and services such as MS Dynamics, Salesforce New Ubisecure Discovery UI API New Ubisecure Template API New improved and extended configurability of SAML-based integration Microsofts Office365 cloud service interop and co-operation New Ubisecure SSO Health Check Listing role and attribute based authorized users Entitlements also based on role
  • 3. New features in Spring 2014 release (details) Ubisecure Backend Query new improved features e.g. XSLT based transformation API for response to ease backend integrations e.g. to various CRM systems or similar Now extended Ubisecure REST API calls to Ubisecure products can be embedded in UIs of external systems and services so that for instance new users to extranet services can be invited direct from CRMs such as MS Dynamics, Salesforce New Ubisecure Discovery UI API offers possibility to create dynamic login UIs and dynamically control the user experience of the login New Ubisecure Template API offers possibility to create customer-specific login UIs and e.g. embedding the login prompt in UI of other service New improved and extended configurability of SAML-based integration offers possibility to adapt to also so called non-typically implemented and behaving services (e.g. some cloud-services) where changes in the external service is not possible Microsofts Office365 cloud service can now be used as registration channel for inflow of new users and as external login service to access other external services through federation New Ubisecure SSO Health Check service enables verifying that the Ubisecure service is functioning properly e.g. in Cloud based installations or other demanding environments New Ubisecure CustomerID release allows listing role and attribute based authorized users also when they have inherited the entitlement based on their service role New Ubisecure CustomerID release enables easy assigning of entitlements also to users in services that through their role are part of the organization or the virtual organization
  • 4. Improved and extended Ubisecure Backend Query
  • 5. Ubisecure Backend Query Authenti- cationService User data Registration + enrichment Portal CustomerID SSO Trust CRM XSLT Backend System(s) Behind ESB ESB (optional) External data source w/ identity related attributes etc information User Information Enrichment from external data sources By configuration. No programming required)
  • 6. Jeremy Mills Contact Person City Group Inc. CRM Extranet Portal AuthenticateCreate UserID 3 Self-registration with Ubisecure CRM Query Jeremy self- registers to extranet portal 1 2 CustomerID enriches user roles using account information from CRM (with XLST transformation done to CRM query response) Next time and onwards Jeremy uses his preferred login method when entering service XSLT
  • 7. Jeremy Mills Contact Person City Group Inc. AuthenticateSelf-service workflow 3 Use workflows for additional role enrichment Jeremy authenticates to workflow 1 Extranet Portal CRM Backend Query with XLST transformation done to CRM query response Jeremy uses his new roles in the extranet portal CRM 2 XSLT
  • 9. Invite new user while using CRM interface with the CustomerID REST API functions
  • 11. Discovery UI API Enable third-party implementations of authentication method selection user interfaces dynamic handling of identity provider selection Example Mobile application selection Java-script method selection implementation in SP application
  • 12. Example result of using Discovery UI API Drop down menu for authentication selection Placement of items in login screen Tailored items in login screen
  • 13. Example calls when using Discovery UI API Authenti- cation Service REST API What languages are supported in the authentication service? What brand & template should be used in the login screen for this service in the corporate cloud setup? Which authN service logo(s) should be used in the login screen for this service? Service Development work is saved as centralized functionalities can be called up Operational work in version upgrades is saved as REST API is standardized and consistently backwards compatible
  • 14. Using Discovery UI API in dynamic cloud service branding use cases Authenti- cation Service REST API What languages are supported in the cloud service and the authentication service? What brand & template should be used in the login screen for this service in the cloud service setup? Service Development work is saved as centralized functionalities can be called up Operational resources are saved as centralized functionalities can be used: Same authN service may serve multiple services and brands
  • 16. Ubisecure Template API Ubisecure Template API allows for a consistent and safe reference method to elements required for providing custom user experiences Examples Dynamically showing currently supported authentication methods within an third-party application Possibility to create customer-specific login UIs Embedding the login prompt in UI of other service Benefits Reducing redirections Faster user experience Consistent API across future product releases
  • 17. Example calls when using Template API Authenti- cation REST API Mobile user gets responsively designed narrow width login for mobile (template ), with selection of authN methods suitable for mobile Laptop user gets responsively designed normal width login for desktops (template) Service Operational work in version upgrades is saved as REST API is standardized and consistently backwards compatible
  • 19. Improved and extended configurability of service and applications integration
  • 20. Single Sign-On to SaaS Services Service 1 Log In Service 3 Service 4 User data Use preferred login Direct integration with improved SAML 2.0 interop
  • 21. Out-of-the-box Integration to Your Services More integrations expected due to integration capabilities * *) Examples of existing integrations, not an all inclusive list Hundreds of services and applications supported. Number continuously growing. Easy for integrators and service providers to verify and add more here.
  • 22. O365 and Google Apps for Business + other cloud
  • 23. Two major Cloud trends 5 Million companies! +5000 every day 3-5 Million companies! Your company should benefit from this!
  • 24. A major Cloud trend also in the Nordics Globally 3-5 Million companies! Your company should benefit from this! Sweden 100 000+ companies! Finland 50 000+ companies!
  • 25. New enterprise customers from Office365 easily and fast Fast & convenient B2B customer acquisition All or part of the users registered at once Registration & new customers from Office365 organizations + Enrichment with business oriented information *) O365 or any other Azure application *) Authenti- cation CRM Service User data
  • 26. Convenient and quick enterprise customer registration and acquisition from Windows Azure Registration from Azure + Enrichment with business information + Verifications + Approvals Registration + enrichment *) O365 or any other Azure application John Smith Name: John Smith Customer: Acme Corp Role: Purchase Manager Authorization: BU Management Andrew Blake Tim Cook Purchase Manager Accountant Department Head Acme Corp *) Authenti- cation CRM Service User data UBISECURE
  • 27. Platform for large volume services e.g. in Cloud
  • 28. SSO Health check Easy monitoring with external HTTP Probe https://login.smartplan.eu/uas/ping 200 OK Check connectivity to Ubilogin Directory
  • 30. CustomerID improvements List organization users via role membership Mandate delegation via role membership
  • 31. Ubisecure Solutions, Inc. firstname.lastname@ubisecure.com FINLAND: Tekniikantie 14, FIN-02150 Espoo, Finland, tel +358 46 7121100 SWEDEN: WTC, Klarabergsviadukten 70, Box 70396, SE-10724 Stockholm, Sweden, tel +46-8-5063 6178 www.ubisecure.com ubisecure www.smootherinternet.com = www.ubisecure.com/blog Ubisecure paves the way for a smoother and safer Internet. Ubisecure software products enable new online business concepts and speed the growth of existing web-based operations by joining separate sites and services into larger trusted areas. The innovative products allow internet users to flexibly and securely move between online services without encountering repeated login prompts. Ubisecure maintains an extensive network of partners that offer organizations advice, consulting and technical services; and provides high-level training in secure online business through the widely appreciated Ubisecure IAM Academy. Founded in 2002 in Finland, Ubisecure Solutions Inc. is a pioneering provider of standardized identity and access management solutions. For more information, please visit www.ubisecure.com. THANK YOU FOR YOUR ATTENTION. PLEASE CONTACT US AT: