The document describes an architecture for integrating Microsoft Learning Gateway tools like Microsoft SharePoint and Microsoft Exchange with ItsLearning, an e-learning platform. It details how ItsLearning is installed and configured to use Active Directory for user authentication and provisioning of user data. Finally, it shows how ItsLearning provides web parts that can be integrated into the SharePoint portal to display course and project information for single sign-on access across applications.
Introduction to Multilingual Retrieval Augmented Generation (RAG)
it's learning MLG integration
1. Springboard to knowledge
Microsoft Learning Gateway –
it’s learning demo integration.
13.11.06 John Arthur Berg - Director of Services - jab@itslearning.com 1
2. Overview - Architecture
ISA Server 2004
Sharepoint portal server 2003
Live Communication server
Windows
Active Directory
It’s learning
Sharepoint
Exchange 2003
MIS Web Parts
services
2005
.NET Application Framework 1.1
SQL Server 2000
Windows server 2003
2
3. Overview – Customisation done to
application
Description:
3. It’s learning standalone installation
Active Directory
5. Active Directory user accounts/security
2
groups syncronised with it’s learning.
7. LDAP autentication between Active
Sharepoint portal server
Directory and it’s learning – ISA server
provides ”Single Sign On” functionality. ISA server
3 4
9. It’s learning provides sharepoint portal
with web parts to integrate user interface
and deliver portal information.
It’s learning
1
3
4. 1. It’s learning installation
» It’s learning is installed on the same environment
as the rest of the MLG installation for
demonstrational purposes. The same integration
would easily be achievable using the preferred it’s
learning ASP hosting model. End users
» Standard it’s learning software is used for this internet
showcase. This ensures compatibility with future
it’s learning software releases/updates.
Customer’s MLG
installation
internet
ASP Hosting center
4
5. 2. Active Directory data provisioning
» Active Directory provides it’s learning with the same user data that the rest of the MLG
environment uses.
» User groups are imported from designated security groups.
» For the demo installation no MIS is present. In most cases it would make sense to include
this in your architecture. It’s learning could probably benefit from a user data population
from the MIS in addition to the Active Directory integration.
It’s learning import
Sharepoint import
scheduler
scheduler
Active Directory
(This architecture is coherent with the existing share point/Active Directory integration)
5
6. 3. LDAP authentication and Single Sign On
» This particular it’s learning installation is
configured to integrate Active Directory
authentication using LDAP Queries. In
simple terms this means that it’s learning
will use the same username / password ard n
rw t io
Fo nt ica
as the rest of the installation. It’s learning
t he
au
» ISA Server will forward the F orwa
authen rd
tication
authentication between the different Secure logon
applications in the MLG solution. This End user ISA server
Sharepoint
means that you will only have to
au
F o en t
th
rw ica
ar tio
authenticate (input username and
dn
password) once, and you will be able to
navigate seamlessly between the
different applications.
Active Directory Exchange
6
7. 4. It’s learning web parts
» The demo installation features two different web-parts that displays information
about a users it’s learning courses and projects.
» These web parts are dynamically updated when something changes in it’s
learning.
» The user can of course click a link and end up in it’s learning.
» The Web parts communicates with it’s learning’s secure web- services API.
7
8. Best practice example
» The next slide is a best practice architectural example compiled from a number
of projects that it’s learning’s consultants have been involved in.
» This example also focuses on the role of the MIS, e.g. SIMS.NET from Capita.
» The best practice example could be applied on both school level for larger
organizations or at LEA level or another departmental level.
» This is a logical architecture and cannot necessarily be mapped 1:1 with server
products found in the market.
8
9. The portal can hold
both public content
and personalised
Different software
content accesable
exposes partial
only through
functionality inside
autentication
the portal.
Groupware server
- Student/pupil
(mail, calendar, etc)
- Teacher/employee
Portal
- Parent
- Administrator
Firewall/proxy
mail, todays
calendar
My courses,
projects,
content, etc
End user Abcense,
Portal grades, my
server students
It’s learning
All resources should
be accessable
disregarding the
physical location of
the end user. The directory service should store
the username/password used to
autenticate the users within the
domain of the organisation.
MIS
MIS should provide
Directory service (user accounts) all applications with
user data
9