Contact Us

ID-DAP Server :: Federated Identity Suite

Federated Identity For Existing Directories

Symlabs ID-DAP Server is the component of Symlabs Federated Identity Suite that gives existing directories the ability to participate in an identity enabled infrastructure. ID-DAP is a specification describing the Liberty ID Web Services enabler for any directory server. It operates as a front end which allows directory data to be accessed using ID-based protocols.
 
Symlabs ID-DAP Server is a full, ready to deploy, Liberty ID-DAP Web Services Provider that delivers secure access to any LDAP repository while ensuring full respect for privacy. ID-DAP clients can invoke this web service to remotely perform LDAP operations with no requirement to reveal a user's actual private identity information such as a telephone number. A web-based, Single Sign-On (SSO) enabled graphical user interface is included with Symlabs ID-DAP Server to greatly simplify local administration.
 
Industry Standards Support
 
  • Liberty ID-DAP 1.0 Directory Access Protocol over Liberty DST 2.1
  • LDAP v3, LDIF
 
Liberty ID-Web Services Framework (ID-WSF 2.0) specifications supported for the secure exchange of identity information include:
 
  • Discovery Service client / Discovery bootstrap
  • Authentication Service client interface
  • Interaction Redirect (consent validation)
 
For Single Sign-On (SSO), and Session and Federation Management, support includes:
 
  • SAML 2.0, Liberty ID-FF

Data Repositories Supported
  • LDAP v3 Servers
  • Active Directory
  • Relational Databases (MySQL, Oracle, Sybase, DB2, Solid)
  • HTTP or any other protocol supported backend.

Federated Identity Suite Diagram

Features
  • Secure identity and data sharing with full respect for privacy
  • Works with any existing directory deployment and any customer-defined schema
  • Carrier grade, high performance, reliable solution
  • Multiple types of credentials supported
  • Full Discovery Service Client interface
  • Consent validation by the user

 

Benefits
  • Exposure of existing directory data is controlled by permissions to avoid sharing sensitive privacy attributes or the DN with 3rd parties
  • Single Sign-On (SSO) provides convenience and security for the management interface
  • All transactions are pseudonym-based and focused on privacy so applications never obtain private data
  • Discovery Service client interface can register the ID-DAP with any Liberty-compliant Discovery Service
 
Key Uses
  • Controlled disclosure of data
  • Back-end integration with LDAP directories and SQL databases

 

Platforms Supported
  • Microsoft Windows
  • Solaris Sparc 8 or higher
  • Solaris x86 9 or higher
  • Linux
  • AIX
  • HP/UX
 
Protocols Supported
  • LDAP(S)
  • HTTP(S)
  • SOAP
  • RADIUS
  • DIAMETER
  • SIP
  • MM7
  • Raw TCP/UDP
  • SNMP

Symlabs is now part of Quest Software. A leader in simplifying and reducing the cost of IT management, Quest’s innovative solutions make solving the toughest IT management problems easier, enabling more than 100,000 customers worldwide to save time and money across physical, virtual and cloud environments. The addition of Symlabs virtual directory and federation technology will enhance the overall architecture of the Quest® One Identity Solution and Quest migration products. Learn more at www.quest.com/symlabs.