LinuxWorld.com - sys-con.com's archive of magazines - SYS-CON ...

More documents

Recommendations

Info

CASE STUDYCatholic Healthcare West Reduces Costswith Standardized Identity ManagementStandards-based Linux-hosted directory services displaces Microsoft Active DirectoryWith more than 40 locations, Catholic Healthcare West was managing user identitiesacross hundreds of applications running on multiple platforms. A streamlinedidentity management solution running on Linux has increased security and improvedregulatory compliance, while dramatically reducing costs.OverviewCatholic Healthcare West (CHW),headquartered in San Francisco, isthe eighth largest hospital system inthe nation and, with more than 9,500 beds,the largest not-for-profit hospital providerin California. The CHW network of morethan 7,500 physicians and approximately40,000 employees provides quality healthcareservices for more than four millionpatient visits annually.ChallengeAs with many healthcare organizations,many of Catholic Healthcare West’s facilitieshad locally developed information systemsand software. As a result, it was managingdisparate systems and platforms across40 hospitals and medical centers. Eachlocation also had its own way of managingnetwork access and user identities fornearly 1,400 applications.To streamline IT operations, CHWwanted to move away from proprietaryplatforms and create a standardized, openenvironment. The organization also wantedto create a standard approach to identityand access management that would increasesecurity and meet regulatory requirements,while still giving physicians and stafffast access to applications.SolutionAfter thorough research, including talking tomany customers who had implemented identitymanagement across a large enterprise,Catholic Healthcare West selected a Novellidentity and access management solution torun on SUSE Linux Enterprise Server.“A solution based on open standardsfits our model of doing business,” saidEric Leader, chief technology architectfor Catholic Healthcare West. “Healthcareprocedures are not proprietary, and informationconcerning how best to meet theneeds of our patients is freely shared amongcaregivers. Because we work in an opencommunity, it makes sense for us to have anopen environment.”CHW consolidated all of its directoriesand migrated its Windows NT domains toNovell eDirectory to manage 20,000 useridentities. Novell Identity Manager synchronizesuser identity information acrossapplications running on multiple platformsincluding Microsoft Windows, Linux, andmultiple versions of Unix.“Many of our applications require MicrosoftActive Directory, but we were uncomfortablestandardizing on a proprietary platform,”Leader said. “Novell eDirectory supports openstandards and allows us to manage identitiesacross our diverse environment.”With centralized identity management,CHW can provision users three times faster,giving them immediate access to the applicationsthey need. Users even have a singleID and password for many applications thatare integrated with eDirectory. CHW willalso be using Novell SecureLogin to giveusers single sign-on access to applicationsthat are not LDAP-enabled.Centralized identity management hasgreatly improved the organization’s overallsecurity and ability to comply with HIPAA,Sarbanes-Oxley, and other regulatoryrequirements. Using Novell Audit, CHWcan conduct timely audits to track who isaccessing information and when. The ITstaff can also immediately revoke networkaccess when employees leave the organization.“We operate in a highly regulatedenvironment where the requirements arealways changing,” Leader said. “We simplyhad to consolidate identity managementor we would see a huge increase in timespent managing regulatory issues. Theidentity and access management solutionprovided by Novell helps us stay ahead ofthe curve.”CHW runs its Novell identity managementsolution on 30 SUSE Linux Enterprise Serversand HP hardware, and also runs several mission-criticalsystems on Linux, including Oracledatabases, software distribution, claimsmanagement, and digital image archives.APRIL 2006 28 www.LinuxWorld.com
CASE STUDY“Microsoft licensing became too burdensome,so we looked for lower-cost alternativesand found that many of our large vendorswere providing support for Linux andopen source,” Leader said. “As we purchasenew software, we look for vendors who runon Linux. Eventually, we would like to runour entire organization on Linux.”A solid disaster recovery strategy is alsoan integral part of HIPAA compliance.With SUSE Linux Enterprise Server, CHWis implementing redundant systems fasterand at a lower cost than with proprietaryplatforms.“The flexibility we have with SUSE Linuxhas exceeded our expectations,” Leadersaid. “There is no way we could keep upwith rapid change if we continued to manageproprietary platforms. We now have acost-effective way to remain compliant andmaintain high availability.”ResultsWith a Novell identity and access managementsolution, Catholic Healthcare Westcentralized identity management across itsdiverse enterprise and reduced initial useradministration time by 70%. The organizationhas increased security with role-basedaccess, auditing capabilities, and streamlinedprovisioning and deprovisioning toimmediately grant or revoke access.“Before implementing the Novell solution,we provisioned users in a hundred differentways,” Leader said. “We didn’t think we couldstreamline this process without substantiallyincreasing our staff. With the Novell solution,we have a high-quality, yet cost-effectivesolution that actually frees up much of ourstaff to work on other projects.”Running SUSE Linux Enterprise serverhas improved performance for several mission-criticalsystems, while significantly reducinghardware costs and reducing serveradministration time by 25%. The organizationanticipates an estimated cost savings of$1.5 million.“Novell’s support for Linux has beenexcellent,” Leader said. “We’ve now movedLinux from a hypothetical idea to a missioncriticalplatform in our organization.”LINUXWORLD MAGAZINE WWW.LINUXWORLD.COM“We operate in a highly regulatedenvironment where the requirementsare always changing. We simply hadto consolidate identity managementor we would see a huge increase intime spent managing regulatory issues.The identity and access managementsolution provided by Novellhelps us stay ahead of the curve.”“Novell’s support for Linux has beenexcellent. We’ve now moved Linuxfrom a hypothetical idea to a mission-criticalplatform in our organization.”— Eric LeaderChief Technology ArchitectCatholic Healthcare Westwww.LinuxWorld.com29APRIL 2006
Page 1: Rebuffing Microsoft’s Spin About
Page 5: FROM THE EDITOR[ E D I T O R I A L
Page 8 and 9: MANAGEMENTRebuffing Microsoft’s S
Page 10: MANAGEMENTAnti-Linux Claims...Claim
Page 15 and 16: HP PROLIANT BL35p BLADE SERVERwith
Page 17 and 18: OPEN SOURCEgroupings (à la links).
Page 19 and 20: OpenSource StorageRData Center Solu
Page 22: DESKTOPThe Portland Project was bor
Page 25 and 26: SYSTEMSthe package manger and you s
Page 27: SYSTEMSsetools package (not install
Page 31 and 32: FIGURE 1FIGURE 2PROMINENT INVESTMEN
Page 34 and 35: PLATFORMSComparing Apache TomcatB Y
Page 36 and 37: PLATFORMSConstruction of Test Cases
Page 38 and 39: PLATFORMSCPU UtilizationCPU utiliza
Page 40 and 41: FIRST LOOKrPath: The SoftwareApplia
Page 42 and 43: APRIL 2006 42 www.LinuxWorld.comCOP
Page 44 and 45: LINUX NEWSHarvest Software Introduc
Page 46 and 47: APRIL 2006 46 www.LinuxWorld.com
Page 48 and 49: ASP.NETManaging an OpenSource Proje
Page 50: ASP.NETNow that the project had a r

LinuxWorld.com - sys-con.com's archive of magazines - SYS-CON ...

Create successful ePaper yourself

Delete template?

Save as template?