How to get to Version 1 phpadadmin

-
Thought its probably worth explaining what I think Version 1 of phpadadmin would look and be able to do. 

Things it needs to be able to do:

  • Allow any user to edit their own Active Directory attributes.  [In Current Release]

    • Allow an administrator to determine which attributes can be edited [In Current Release]

    • Allow an administrator to dictate a range of choices for a field1 [In Current Release]



  • Allow the users access to all that directory information by providing a powerful search

    • Allow the administrator to determine which fields can be used to search on

    • and which fields can be returned in the search.

    • Users contacts details export to vCard format

    • Allow phone number to be formatted in a way that can be picked up by various SIP softphones i.e. phone://<number> etc.



  • Self Service Passwords Resets (for me the most important feature)

    • Allow users to set their own challenge questions & answer

      • Encrypt those questions in the DB

      • Hash the Answers



    • Allow the admins to set the complexity requirements etc.

    • Allow admins to state the minimum number of questions required to enable Self service password resets

    • Allow admins to state the number of questions required to reset a password.

    • Ability to use of 2 factor authentication

      • Send an password unlock code to either an external Email address ( set by the user in thier ad attributes)

      • Or SMS (via smtp gateway) to a mobile set in thier AD fields.






As you can see there is some way to go yet before I can reach the coveted Version 1.  The experience with previous versions I have written means, alot of the backend work is already there and in many cases (like search for example) its just the frontend interface that need completing. Further off post V1 I want to go further into allowing users to perform simple admin tasks. Such as:

  • allowing the owner of the Directory to pick who has read or read/write access

  • Letting Managers create users for new hires

  • Exchange integration


The list could go on for ever, but im mindful (no one said mindful before starwars) of biting of more than I can chew.

  1. This is good to get around the problem where you have a directory full of Speelling mistakes.  Allowing you to give you users the freedom to tell you for example that they are in that office with the weird name and stopping them having to gave a stab at spelling it.

Comments

Post a Comment

Popular posts from this blog

The Beer Belly

-
Image
Tags: Beer Belly , Drinking , Tiger Tiger Check out www.the beer belly .com for all your drinking needs... Could be useful for say Tiger Tiger, you could get drunk for cheap. Or maybe while out running, because you only start running if you have a beer belly, so this would help you keep your fluid levels topped up, and in time you'll be able to fit more in when you lose some weight... are there any others? M
Read more

T-Rextasy

-
Image
Went to see them (again) last night. Honestly, people don't listen to enough T-Rex, even though it can substantially improve your life. A lot of people say "I don't know anything they did", so you don't know Metal Guru, Jeepster, Telegram Sam, Hot Love, Children of the Revolution, Ride a White Swan, Get it On, I Love to Boogie, New York City, The Groover, Solid Gold Easy Action, or 20th Century Boy. Right. Bolan was totally the man, until the untimely tree/mini incident. Genius.
Read more