Re: The VPN question

[Julian Y Koh <kohster () NORTHWESTERN EDU>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Tue Jul 5 14:01:47 2011 Central Time, "Flynn, Gary - flynngn" <flynngn () JMU EDU>
 wrote:
> Do those of you who manage hundreds of roles manage memberships manually
> on the VPN or through directory lookups? If through directory lookups,
> were the directory attributes or groups pre-existing or did you create
> them for the VPN?

We do it via directory attributes.  In some cases the attributes are pre-existing, but in most cases we've created them 
for the role in question.  Membership in the group is managed by the local departmental admins, as is first-level 
technical support for users.



- -- 
Julian Y. Koh                         <mailto:kohster () northwestern edu>
Manager, Network Transport                         <phone:847-467-5780>
Telecommunications and Network Services         Northwestern University
PGP Public Key:<http://bt.ittns.northwestern.edu/julian/pgppubkey.html>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.17 (Darwin)
Comment: GPGTools - http://gpgtools.org

iEYEARECAAYFAk4TYIQACgkQDlQHnMkeAWOBLwCeOR8Os+0gutk6SCs/U9fNPdVI
99cAoPT8BZ1EAz/RobXHXqlBIFpRNb1L
=WjVG
-----END PGP SIGNATURE-----