|
|
|
> HOME > PROJECTS > ZEUS ADMINISTRATOR SUITE
|
 |  |  |
 |
Zeus Administrator Suite
Zeus Administrator Suite
The Zeus Administrator Suite is an invaluable window into our LDAP infrastructure.
Written in Perl, and making use of role-based access control, management of the
directory is federated along sensible organizational units.
Overview
Modules, Roles, ACIs
The Zeus Administrator is broken down into several modules along organizational
unit boundaries. Access control interfaces determine access to each module,
as well as fine-grained access down to the attribute level. ACIs for each
attribute rank from 0-3: 0 invisible, 1 read-only, 2 read-write, 3
superuser-only. When roles are defined, access is set according to need and
administrators are assigned to the role. Administrators can belong to several
roles, with roles combining for most permissive access.
The User and Department modules see the most attention by our directory
administrators, the online web directory is backed by LDAP. Directory photos,
bios, titles, phone and office location, etc are all exposed through the
interface, and made live with submission. Helpdesk technicians have much
of the same, adding access to most of the Group module. Our windows domain is
backed by LDAP groups, and access to many of our campus services is governed by
service groups. Email administrators have access to most of the above, as well
as the Alias module for maintaining email lists, aliases, and forwarding
addresses to back Qmail-LDAP. The System and Resource modules expose bits for
the windows domain and calendaring respectively. Lastly, the Reports module
safely exposes various LDAP queries when needs require.
|
 |
|
|
 |  |  |
|
|
