You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 5 Next »

Survey Strategy and Goals

The intent of this survey is to collect information from higher ed institutions about their current strategies for dealing with test accounts/identities, and what gap(s) they see between the tools they currently have at their disposal and what would meet their needs. Security is becoming more and more of an issue in how we test our applications and systems. The aim of our survey is to collect the current state of affairs and also the good ideas of our colleagues, and then share the results of the survey and perhaps spark some discussion about various testing strategies, and determine if there is a way in which MACE-DIR could help support these strategies.

Survey Draft

1. Identity management departments at Higher Ed institutions have many different ways to provide testing accounts and identities for their application developers. These range from "just test in production" to more complex strategies. Can you please describe how your institution approaches this problem?

  • Our application developers test with our production identity environment and we don't have a separate test identity environment.
  • We have a test environment that is a complete copy of our production identities.
  • We have a test environment that consists only of randomly generated identities and does not contain any real identity information.
  • Other (comment box)

2. If you have a separate test identity environment, are all developers on campus allowed to use it or is it limited to the developers in your central IT department?

  • Central IT only
  • All of campus
  • Depends on the application and/or the developer
  • Don't have a separate test environment
  • (comment box)

3. Sometimes problems or bugs arise which can only be solved in the production environment. How does your institution handle this type of situation?

  • We will allow a developer to "take over" someone else's identity.
  • We create a separate, new identity in production for the developer to use. (please describe)
  • We allow a developer to alter their own identity in order to do their troubleshooting (or we will do this for the developer) - e.g. change their type from staff to student. (please describe)
  • We have a "set" of identities in production that developers can use. (please describe)
  • Other (comment box)

4. What doesn't work about your current test environment?

  • Comment box

5. Many application developers use their desktops for initial development, then move on to a test environment, and then move on to production. Do you provide any special identities for the "development" environment (as opposed to "test" and "production")?

  • Yes (please describe)
  • No
  • Other (comment box)

6. At least one institution has created a "test" attribute in their production directory which is used to indicate that an entry is not a real identity. Do you think it would be useful to have an attribute like that available as part of the eduperson schema?

  • Yes, we would use something like that.
  • No, we probably wouldn't be interested.
  • Comments

7. Any other comments, ideas or issues you would like to see discussed with respect to identity management test entities?

  • Comment box

Thank you for participating!

  • No labels