Archive

Active Directory integration in IBM Cloud Managed Services V1.3

Share this post:

With the release of IBM Cloud Managed Services V1.3, there have been significant feature changes to the product offering. One of these feature enhancements is the Active Directory (AD) integration feature.

As of V1.3, there are now three different integration options available to suit the range of applications that enterprises support. The basic premise of the feature is to allow you to leverage your existing Active Directory implementation for authentication within Cloud Managed Services.

All three scenarios offer complete DNS integration, so that your servers in Cloud Managed Services can resolve your existing servers and your existing servers can resolve your Cloud Managed Services servers. This is particularly necessary when it comes to integrating your Active Directory infrastructure with that of a cloud service provider.

Scenario one: IBM Managed Active Directory Lite

This option is standard unless one of the other two scenarios is chosen.

AD S1, 2

Features:

• A Cloud Managed Services managed Active Directory domain dedicated to you
• Active Directory external domain trust integration between your existing domain and your dedicated Cloud Managed Services domain
• The ability to recognize credentials in Cloud Managed Services from your existing domain, eliminating the need for account duplication/replication.

Scenario two: IBM Managed Active Directory

Scenario two builds on the offering from Scenario one by enabling additional functionality within AD. Cloud Managed Services offers a seamless upgrade from Scenario one to Scenario two.

Features:

• A Cloud Managed Services managed Active Directory domain dedicated to you
• Active Directory forest or external trust integration between your existing domain and your dedicated Cloud Managed Services domain
• The ability to recognize credentials in Cloud Managed Services from your existing domain, eliminating the need for account duplication or replication
• Active Directory schema extensions for your Active Directory enabled applications
• Kerberos authentication protocol support between your existing environment and your Cloud Managed Services Windows servers
• Support for co-located Domain Controllers in Cloud Managed Services from your existing domains
• Support for a stronger security policy than the Cloud Managed Services default (which is already extensive)

AD S3

Scenario three: Customer Managed Active Directory

Scenario three allows you to keep the Cloud Managed Services guests within your existing AD domains. This is of particular value when taking advantage of AD integrated applications already deployed in your enterprise.

Features:

• Cloud Managed Services Windows instances are now provisioned directly into your existing managed Active Directory domains
• Fully Qualified Domain Name (FQDN) for your Cloud Managed Services guests matching your existing AD suffixes
• Existing AD integrated applications and schema extensions useable on your Cloud Managed Services guests
• Kerberos authentication protocol support between your existing environment and your Cloud Managed Services Windows servers
• Support for provisioning directly into specified Organizational Units
• Support for Organizational Unit based Group Policy Objects
• Support for a stronger security policy than the Cloud Managed Services default (which is already extensive)
• External outbound trust to enable Cloud Managed Services management

The Cloud Managed Services product is continuing to evolve. Stay tuned for updates regarding the upcoming 1.4 release.

More stories

Why we added new map tools to Netcool

I had the opportunity to visit a number of telecommunications clients using IBM Netcool over the last year. We frequently discussed the benefits of have a geographically mapped view of topology. Not just because it was nice “eye candy” in the Network Operations Center (NOC), but because it gives an important geographically-based view of network […]

Continue reading

How to streamline continuous delivery through better auditing

IT managers, does this sound familiar? Just when everything is running smoothly, you encounter the release management process in place for upgrading business applications in the production environment. You get an error notification in one of the workflows running the release management process. It can be especially frustrating when the error is coming from the […]

Continue reading

Want to see the latest from WebSphere Liberty? Join our webcast

We just released the latest release of WebSphere Liberty, 16.0.0.4. It includes many new enhancements to its security, database management and overall performance. Interested in what’s new? Join our webcast on January 11, 2017. Why? Read on. I used to take time to reflect on the year behind me as the calendar year closed out, […]

Continue reading