MIS Systems Thread, Cloud MIS Security in Technical; Originally Posted by vikpaw
Does SIMS have a SIF agent?
I was thinking of alternatives which might be quicker in ...
16th February 2013, 04:04 PM #31
There are a couple of SIF agents for SIMS.net.
Originally Posted by vikpaw
SIF implementations were originally being lead by LAs for vertical reporting and LA wide learning platform integration and not from a school horizontal integration point of view. this is changing.
LA SIF infrastructures cover 40% and LA independent SIF cover infrastructures are able to cover 100%.
If an application already has an API then SIF enabling is straight forward. We SIF enabled Oliver in 10 days by using their API.
IDG Tech News
16th February 2013, 04:23 PM #32
@vikpaw forgot to add SIM.net Partnership exchange is built on SIF.
16th February 2013, 06:54 PM #33
To be more accurate its based on SIF. We had to make some changes to the way SIF exchanged messages.
16th February 2013, 10:08 PM #34
@PhilNeal I would still class it as SIF.
Originally Posted by PhilNeal
Yes you have implemented a message broker to handle multiple providers (schools) within the same zones but it use the same data model and infrastructure specification as other implementations.
16th February 2013, 11:24 PM #35
In our case we access SIMS remotely via a VPN/Microsoft Direct Access, two factor exists in that the user has to enter their password and that the notebook PC has a domain allocated security cert (which we can revoke as and when required) maybe such a situation where a machine assigned cert will work for you as well?
Originally Posted by GREED
Thanks to jamesfed from:
GREED (18th February 2013)
17th February 2013, 07:34 AM #36
Maybe, so the XYZ-Nimbus implementation would have to have / generate this certificate for whichever client required it.
Originally Posted by jamesfed
It just seems like adding a whole level of complexity in the management process, which is fine if that's what is needed. I'm just wondering if the base is there in the current offerings.
17th February 2013, 09:35 AM #37
Just been looking at Google Authenticator, I use it but didn't realize you can add it to your own servers.
Thanks to vikpaw from:
TheScarfedOne (17th February 2013)
17th February 2013, 10:04 AM #38
WOW can you. I have used that for ages on my phone. Just been looking at Google Authenticator, I use it but didn't realize you can add it to your own servers.
17th February 2013, 11:56 AM #39
We've postponed using Google Authenticator on Agora as it doesn't force disconnection on publicly available terminals. ( I should add that I'm out of my depth on this)
17th February 2013, 12:15 PM #40
17th February 2013, 12:18 PM #41
Disconnection should be the job of the underlying service. Authenticator just does it's job for the 30 second interval when you use that time based code. After that you're at the hands of the application.
Originally Posted by PhilNeal
That's my understanding.
I'm interested in this as we plan to roll out iPads to staff next year, and it's something they should all have to hand.
Last edited by vikpaw; 17th February 2013 at 12:20 PM.
17th February 2013, 03:22 PM #42
I'll check but the problem was we couldn't force a disconnect.
17th February 2013, 05:08 PM #43
Taken a differen't tack with this built our own remote access solution around RDP.
SSL web server only exccepts SSL traffic.
SSL Tunnel sort of to from web Server to PC RDP connection Small Service on PC's to control this.
Students and Staff can access PC on the Network.
We have about 10 PC or Virtual PC's constantly on someone logs on one boots up someone logs off one shuts down automated.
Can't access MIS systems without Encrypted key (Encrypted code) on memory stick or PC\laptop, can't copy this key anywhere as it is coded in a specific way automatically when setup so to access MIS system Encrypted Key and Username and Password so Dual Factor for MIS, this is Seamless to user as they just click the app this loads up the logon web page and does the authentication then the logon with their username and password.
Can set this to Disconnect the session when you want if not in use so 1 minute or whatever you like as this is set against resources (PC's) can set MIS systems to 1 minute others to 5 or what you like.
Someone loses the Laptop or USB can't get in unless they also have staff username and password if they try to guess both key and User get disabled after so many tries.
Has logging and a lot of other features built in as well as other Security features.
Just interested if anyone can see issues with the above and to other things that we may need to build in or take account of.
18th February 2013, 08:20 AM #44
@Steven_Cleaver Do you have any remote third parties that need access? Or automated systems? How do you resolve access for them?
18th February 2013, 09:40 AM #45
@vikpaw I think I know what you mean by third party access but this is all done internally so things like communication between SIM's and Insight automatically is done internally as this is hosted on site as is anything like this as it is all hosted internally, then with Insight Staff, Students and Parents access this over SSL as are all our web solutions I run penetration tests on anything web facing and so do the LEA using external company I think and I get a report from them after these have been run.
By MissyD in forum Cloud Services
Last Post: 4th February 2013, 05:04 PM
By Qualitypolice999 in forum MIS Systems
Last Post: 26th June 2012, 02:05 PM
By CPLTD in forum Our Advertisers
Last Post: 17th April 2012, 11:07 AM
By garrysaddington in forum MIS Systems
Last Post: 4th December 2009, 11:12 PM
By nawbus in forum General Chat
Last Post: 27th August 2005, 04:20 PM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)