Paladin Security
Paladin Security is an ICOM client that has a FiLMS instance hosted by ICOM at:
- Users: https://paladin.icomproductions.ca
- Admin: https://paladin.icomproductions.ca/login.php?code=admin
Two unique interfaces are used:
- LDAP, FiLMS user logins are authenticated against the Paladin LDAP
- ISE, FiLMS enrollment completions (earned certificate data) are submitted to a 3rd party app called ISE
List of Products
This client has the following products produced by ICOM:
List of Courses
This client has the following courses produced by ICOM:
List of Modules
[edit]
FM_SilentSignon
They have the ability to bypass login using signed external links
[edit]
FM_ADAuth
The Paladin organization settings for the LDAP server:
- LDAP - Assign Groups: true
- LDAP - Username: Icomadmin
- LDAP - Create Users: true
- LDAP - Password: $3cure0011
- LDAP - Server: 192.168.200.56
- LDAP - DN: dc=officer,dc=local
- LDAP - Default Domain: officer
[edit]
FM_Paladin
Sends completion info to an ISE server.
Changes
- 2012-06-01 08:53:00 Removed Force Password Reset module as FiLMS passwords are no longer relevant.
VPN Settings
A site-to-site VPN is used to allow communication between FiLMS and Tenzing's LDAP & ISE services.
Settings:
Server 1 - LDAP OLD IP: 192.168.200.56 /22 new IP: 172.16.6.4/16 Server 2 - ISE server OLD IP: 192.168.200.46 /22 New IP: 172.16.6.1 /16 The server IP on ICOM side inside the VPN is 10.200.124.147.
Deployment
The client would like the following process to be followed for course deployments:
- Tag UAT courses, structures, curriculums and classes with the tag: (UAT)
- Tag inactive/old courses, structures, curriculums and classes with the tag: (OBSOLETE)
- Inactivate old courses and structures
[edit]
Client admin
Angela Dekort
- adekort@paladinsecurity.com
[edit]
Course classifications
- BST
- Knowledge Based
- Site Specific Orientation
Client Process
Adding users
- Employee Resource Center
- Adds new employee to LDAP
- Adds user to FiLMS with Employee Number
- Logs into FiLMS as the user to pull the group memberships
Paladin Intranet
- Employee Resource Center
- Groups: Basic Security Training,Required Courses
- User needs to log into FiLMS
End User Difference
- Users must sign in using their LDAP username (5 digit employee id with leading 0s) and password.
- They may also access courses / FiLMS via external links due to the Silent Signon module.
- Users will only be placed in the correct groups based on their LDAP membership if they log in using the FiLMS login page
Support
Notes