Doug Ouzts Partner Management

Copyright © 2007 Condrey Corporation. All rights reserved. 1

Doug OuztsPartner Management & Training

Condrey Corporation

[email protected]

Empowering User Collaboration


Agenda• Background and the Challenges

• Current Workarounds

• The DocXXchanger Paradigm

• Empowering User Collaboration

• Solution Components

• Installation and Deployment

• Demo / Q&A


• Software development company focusing exclusively on directory-enabled & policy-based storage management

• U.S. Corporation based in Greenville, South Carolina.

• Customers in 33 countries representing General Commercial, Fortune 1000, Government, Military, Higher-Ed, K-12, and Healthcare.

• Novell Engineering Partner … Novell Storage Manager™

• Microsoft Empowered Development Partner

• Leader in Identity-driven & Policy-based Storage

• Enterprise level customers

• Partner Driven (NSM, Kanaka for Mac, IUAdmin, DocXchanger)

Condrey Corporation


Background and Collaboration Challenges


The Landscape

• 85% of data existing on networks in the world today is unstructured. (and most of that is on traditional file servers)

• Users need help managing unstructured data.• Document management has a bad reputation

(big and unwieldy).• Every organization and every user performs

document management tasks every day. (whether they want to or not)


Baseline Storage Management

Personal StorageCollaborative Storage

English Dept

Yearbook

Administrator manually creates, moves and cleans up collaborative and personal storage



English Dept

Yearbook

Novell Storage ManagerNovell Storage Manager

Administrator installs Novell Storage Manager to automate collaborative, class and personal storage based on policies

Automated Storage ManagementNovell Storage Manager


Collaboration Challenges


English Dept

Yearbook

Cathy

Bill

Tom


Properties of Dynamic Collaboration

• Intended sharing duration is variable.• Only a few documents may need to be

shared (scope is likely limited).• Access rights need to be flexible and

driven by the user.• Delays are not an option. • In the end, only the user knows their

collaboration needs at any point in time.


Collaboration Challenges• Ad hoc collaboration with other users on the network is

hard for users.

• Collaborating with people outside of the organization is very hard for users.

• The network admin has to be involved to enable any type of new collaboration.

• Sometimes users just need to publish information… other times they need people to be able to perform updates.

• Delays are not an option

• Universal problem…but there are workarounds.


Current Workarounds


#1 Email Attachments


#2 Have the Admin Help

Have the Network Admin:

• Set up a group

• Create storage space on the network.

• Give rights as appropriate

• Create accounts for external users.

• Get everything cleaned up when you are done.


#3 Find a Place on the Web

• Find a place on an external website …probably outside the organization.

• Remember to Upload/Download stuff after you work on it.

• Hope that the security officer or your boss doesn’t mind.


The DocXXchanger Paradigm


Basic Premise Set• There is a need to overcome the previous

mentioned challenges

• People want less hassle.

• It is best to share things from existing working locations…no movement of files.

• Nobody wants to change how they do things…Evolution vs Revolution


The Solution lies in the Network• The organizational network already exists.• It is funded and managed.• The data is already there.• The users are already there.

There is no need to fund and build a new infrastructure and migrate data.

The solution is to empower the users on the network.

Bottom Line!


Solution: DocXXchanger• Empowers end-users to easily share existing network

files and folders with colleagues both inside and outside the organization.

• Governed by security defined by the administrator.• Eliminates file sharing via e-mail attachments• Empowers teams to create their own collaborative

storage space• Both web and OS-integrated clients give flexibility and

choice.• Leverages existing eDirectory and storage

infrastructure


Defining the Players

Administrator

Provider

Internal Consumers

External Consumers

Defines policies governing what files and folders can be shared (internally and externally)

Internal faculty, staff or students that need to provide files or folders for sharing.

Internal faculty, staff or students that need to share and access files or folders.

Colleagues at other school districts, colleges, parents, board members, etc that need access to the shared files or folders.


XX

eDirectory

Provider

Home Directory

Shared Storage

AdministratorIdentity Information, Authentication and Data Store

Empowered Users Collaborating

NCP AFPCIFS


XXProvider

Administrator

The administrator defines global rules & policies governing file & folder sharing for internal and external consumers


eDirectory

Home Directory

Shared Storage

NCP AFPCIFS


XX

eDirectory

Provider

Administrator

The provider selects files or folders to be shared based on defined policies


Home Directory

Shared Storage

NCP AFPCIFS


XX

eDirectory

Provider

Administrator An e-mail is sent to each consumer containing a ticket and file link

Corporate Mail Server

Internal Consumer

External Consumer


Home Directory

Shared Storage

NCP AFPCIFS

E-Mail

DXV


XX HTTPS

eDirectory

Provider

Administrator

Internal consumers have direct access or ticket based access via a web browser


Home Directory

Shared Storage

NCP AFPCIFS

NCP AFPCIFS

Internal Consumer


Internal Consumer

External Consumer

XX

eDirectory

Provider

Administrator

External consumers have ticket based access via a web browser

HTTPS


Home Directory

Shared Storage

NCP AFPCIFS

NCP AFPCIFS


Security

Life as an Administrator


Mental Security Check

• In my environment, is there anything to stop someone from copying data from a server to a laptop or USB drive, taking it home, and then distributing the data over the Internet?

• Can users on my network send e-mail attachments today?

• Can I do anything to stop them?

• When they send e-mail attachments, can I stop the recipient from forwarding them on to any person they choose?

Before we proceed, ask yourself these questions and then, as we go through the rest of the presentation, continue to consider your answers.

Conclusion: In almost all environments, when someone is given rights to data, they are being trusted with it’s safekeeping based on common sense and ethics. Any other conclusion is just kidding yourself.


Administrator

• Defines the limits and the characteristics under which DocXXchanger operates using a browser-based Administrative interface.

• Defines rules for files & folders allowed for internal sharing

• Defines exclusion rules for critical data• Defines policy governing external collaboration


Admin Interface - Security

Control who may be Consumers.

Enable/Disable external Consumers.

Defined rights.

Define what may and may not be shared through the system.

Describe rights needed to create sharing links.


Life as a Provider


Provider

• Selects files and/or folders to share and who to share them with.

• Has a choice of interfaces:– Native Platform OS Integrated Provider Client

(for direct access)– Web Browser Provider Interface

(may be used from local or remote locations)


Provider: Native Platform Interface

• Integrates with the OS.

• Behaves in a manner native to the platform and it’s users.

• Windows XP and Vista ready now.

• Linux desktop and Apple® Mac OS X are scheduled to be released in the very near future.


Windows Provider Client


Windows Provider Client


Provider: Optional Web Interface

• User authenticates contextlessly and is shown a list of storage resources based on his identity.

• User browses through the file system to the desired file or folder and clicks the Share link.


Provider: Optional Web Interface


Life as an Internal Consumer


Internal Consumer• A user in the same organization and network as

the Provider.• Uses files and/or folders shared by a Provider.• Has a choice of interfaces:

– Native Platform OS Integrated Application (for direct access)

– Web Browser Consumer Interface(may be used from local or remote locations)

– A thin remote client Explorer-like application that supports drag and drop of files and folders over an HTTPS connection. (near future)


Internal Consumer Notification

• Each consumer receives notification of a new sharing link via e-mail from the DocXXchanger server.

• Most any mail client is supported.• The message contains:

– Information from the Provider about the data.– A ticket-based URL for remotely accessing the storage

via a browser– A small XML file attachment (.DXV file) for accessing the

shared storage directly.– Legal or other formatting information derived from a

system-defined e-mail template.


Direct Access


Direct Access Windows Name Space Extension

• Integrates with Windows Explorer

• Retains DXV linkage information for the life of the ticket so that the user does not have to go back to the notification mail message repeatedly.

• Provides direct access into the storage.

• Integrates with Application Open and Save As dialogs for a seamless user experience.


.DXV Files

• DXV (DocXXchanger Vector) files are small XML files that describe the ticket associated with the shared link.

• The client application registers with the OS so that when the user clicks on the attachment, the XML file is used to have the client directly open the shared storage.

• Each DXV file includes path information relative to various storage access protocols.

• This allows a notification email to be used by any email client on any platform without regard for file system access protocol.


Remote Web Access


Remote Web Access


Write Access


Life as an External Consumer


External Consumer

• A user outside of the organization and network of the Provider.

• Uses files and/or folders shared by a Provider.

• Uses a Web Browser-base Consumer interface for accessing the storage.


External Consumer Notification

• Each consumer receives notification of a new sharing link via e-mail from the DocXXchanger server.

• Most any mail server and client are supported.• The message contains:

– Information from the Provider about the data.– A ticket-based URL for remotely accessing the storage

via a browser– Legal or other formatting information derived from a

system-defined e-mail template specialized for external consumers.


Remote Web Access


Remote Web Access


Remote Web Access


Write Access


Installation and Deployment


Provider Architecture

Provider Web Interface (external)

RIA Interface (internal)

Corporate Mail Server

Internal Consumer

External Consumer

Mail Template

HTTPS

XML/HTTPS

XX

eDirectory


Overall System Architecture

Provider

Internal Consumer

External Consumer

Web Interface (external)

RIA Interface (internal)

XX-Server-ServerProvider

HTTPS InterfaceSMTP

Client SubSys

TicketingSubsys

Timed ACLSubSys

ConsumerHTTPS Interface

Identity Information & AuthenticationeDirectory


Integration with eDirectory• DocXXchanger Tickets are stored in

eDirectory as objects in a designated Ticket Container.

• The system is self-maintaining.• Schema extensions are required to create

attributes and definitions for 3 classes:– Ticket Container– Ticket– Server Proxy


Traditional Installation

Install on any server in the Tree

XX

Production Tree

XX(Clustered)


Cross-Tree Installation

Install on a server in a utility tree

Production Tree

XX


Soft Appliance Deployment

Delivered as a set of clustered VMs (future)

Production Tree

VM

VM

XX


Hard Appliance Deployment

Clustered VMs on dedicated hardware (future).

Production Tree

VM

VM

XX


Empowering User Collaboration

Q & A

HTTP://WWW.CONDREYCORP.COM

http://www.condreycorp.com/


Kanaka for MAC OSX Condrey Corporation

Identity-Driven Storage Access


Kanaka for MAC OS X – Condrey CorporationIdentity-Driven Storage Access for Mac OS X

• eDirectory Plug in for Mac OS X

• Developed with Apple Engineering

• Authentication & Single Sign on to MAC OS X and Novell Network

• Automatically mount users home directory based on Identity

• Automatically mount collaborative storage based on Identity

• End User Storage Dashboard and Password Change functionality

http://www.condreycorp.com


Kanaka for MAC OS X Identity-Driven Storage Access for Mac OS X

eDirectory


Kanaka for MAC OSXStudent View – Home Directory


Kanaka for MAC OSXStudent View – English Class


Kanaka for MAC OSXTeacher View – English Class Folders


Condrey Corporation 125 The Parkway, STE 500 Greenville, SC 29615 USA Tel 864-329-8528 www.condreycorp.comDocument Version 0.7. Copyright © 2007 Condrey Corporation. All Rights Reserved. Condrey Corporation, the Condrey Corporation “C’s” logo, DocXchanger, and File System Factory are trademarks of Condrey Corporation in the United States and other jurisdictions. Novell and NetWare are registered trademarks of Novell, Inc. Microsoft and Microsoft Windows are registered trademarks of Microsoft Corporation. Linux is a registered trademark of Linus Torvalds. Apple, Macintosh, and Mac OS X are registered trademarks of Apple Computer, Inc. All other marks and names mentioned herein may be trademarks of their respective companies.

Doug Ouzts Partner Management

Technology

storage infrastructure

collaborative storage

empowered users

external users

shared files

x provider administrator

existing network files

network admin