Upgrade to Pro — share decks privately, control downloads, hide ads and more …

グループ企業で Slack Enterprise Gridを導入する ~異なる認証手段で単一のSSOを実現~ / Using Slack Enterprise Grid in Group Companies

グループ企業で Slack Enterprise Gridを導入する ~異なる認証手段で単一のSSOを実現~ / Using Slack Enterprise Grid in Group Companies

1ebd0877fc2fa18ecd0cf3105293fa1e?s=128

chibiegg

July 10, 2019
Tweet

More Decks by chibiegg

Other Decks in Technology

Transcript

  1. άϧʔϓاۀͰ 4MBDL&OUFSQSJTF(SJEΛಋೖ͢Δ ҟͳΔೝূखஈͰ୯Ұͷ440Λ࣮ݱ /'#%(&#+,.*-,*.$,) 2019/07/10 @3 Slack JCN 1023849756 

        
  2. ࣗݾ঺հ 2 !DIJCJFHH !IJOBUBO@OFU ʲॴଐ౳ʳ ͘͞ΒΠϯλʔωοτגࣜձࣾ ৽ଔೖࣾ೥໨ ࣥߦ໾һ ٕज़ਪਐ౷ׅ୲౰ *[VNP#"4&גࣜձࣾ

    औక໾ ʲ։ൃʳ • ͘͞Βͷ714 "1*%#੍ޚγεςϜ୲౰ • TBLVSBJP ϋʔυ΢ΤΞ࢓༷ɺϑΝʔϜ΢ΤΞ։ൃ γεςϜઃܭɺ։ൃΠϯϑϥઃܭɺߏங • ࣾ಺γεςϜσʔληϯλʔࣗಈԽ ʲͦͷଞʳ • $4"+6ϓϩάϥϛϯάɾίϯςετ৹ࠪһ • )PNF/0$0QFSBUPST`(SPVQ "4
  3. ࣗݾ঺հ 3 ʲܦྺʳ • ϩϘΧοϓδϡχΞ தֶߴߍ /),େֶϩϘίϯ • େࡕେֶ޻ֶ෦ిࢠ৘ใ޻ֶՊ৘ใ௨৴޻ֶઐ߈ •

    ݸਓࣄۀओ • େࡕେֶେֶӃ޻ֶݚڀՊதୀ • 4&$$0/$5'ࠃ಺Ґ • *46$0/*46$0/*46$0/ຊઓग़৔ • *46$0/࡞໰ • *$54$େਓνʔϜ ʲઐ໳ʳ • ιϑτ΢ΤΞΤϯδχΞ • /84$%#εϖγϟϦετ • ճ࿏ઃܭ૊ΈࠐΈιϑτ΢ΤΞ ʲझຯʳ ཱྀߦԹઘࣸਅిࢠ޻࡞ϓϩάϥϛϯά͔Θ͍͍෰ !DIJCJFHH !IJOBUBO@OFU
  4. 4 ച্ߴ ࣾһ਺ Ϛβʔζ্৔ ౦ূҰ෦্৔ ߴՐྗɾ*P5 ೥ ೥ ೥ ͘͞ΒͷϨϯλϧαʔό

    ೥ ೥ ݚڀॴ։ઃ ೥ ͘͞Βͷ714 ೥ ૑ۀ ೥ ੴङσʔληϯλʔ ͘͞ΒͷΫϥ΢υ ೥౓ ঎ ߸ ͘͞ΒΠϯλʔωοτגࣜձࣾ ຊ ࣾ େࡕࢢ๺۠େਂொ ૑ ۀ ೥݄೔         ԯ ԯ ԯ ԯ ԯ ԯ ԯ ԯ ԯ ԯ ԯ """         ! "         ! ϋ΢δϯά ઐ༻αʔό Ϩϯλϧαʔό Ϋϥ΢υ714 ͦͷଞ ձࣾԊֵ
  5. ΞΫςΟϒϢʔβʔ 6 άϧʔϓձࣾΛؚΊ ΞΫςΟϒϢʔβʔ

  6. ͘͞ΒΠϯλʔωοτͰ͸೥͔Β4MBDLΛར༻͍ͯ͠·ͨ͠ 7

  7. ͘͞ΒΠϯλʔωοτͰ͸೥͔Β4MBDLΛར༻͍ͯ͠·ͨ͠ ౰ॳ͸ΤϯδχΞ෦໳ͷಠࣗಋೖ ˣ όοΫΦϑΟε΋ؚΊશࣾͷඪ४πʔϧ΁ ˣ άϧʔϓձࣾશମͰಋೖ 8

  8. ۩ମతʹ͸ 4UBOEBSE1MBOΛಋೖ ˣ 1MVT1MBOʹΑΓɺ440Λಋೖ ˣ &OUFSQSJTF(SJEΛಋೖɺάϧʔϓશࣾͰ440༗ޮʹ 9

  9. γϯάϧαΠϯΦϯ 440 • 4MBDLͷೝূͱ͸ҟͳΔผͷೝূج൫Λར༻Ͱ͖Δ • ೖ৬ऀɺୀ৬ऀͷ؅ཧ͕ෆཁ • ར༻Ͱ͖Δͷ͸4".-ͷΈ • .JDSPTPGU"[VSF"%

    • 0OF-PHJO • 4IJCCPMFUI41 • FUD • &OUFSQSJTF(SJEͰ͸440͕ඞਢ 10
  10. 4".-ͷ࢓૊Έ • αʔϏεఏڙଆͱೝূଆΛ෼཭͍ͯ͠Δ • αʔϏεఏڙଆΛ 4FSWJDF1SPWJEFS41 ͱݺͿ • ೝূଆΛ *EFOUJUZ1SPWJEFS*E1

    ͱݺͿ • Ұൠతʹ͸)551ͷ(&5ύϥϝʔλͱ1045Λར༻ ͯ͠ೝূཁٻͱ݁ՌͷҾ͖౉͕͠ߦΘΕΔ 11
  11. 4".-ͷ࢓૊Έ 12

  12. ͘͞ΒΠϯλʔωοτͷ4MBDLೝূج൫ ୈҰੈ୅ ୈҰͷؔ໳ γϯάϧαΠϯΦϯ͕ͳ͍ 13

  13. ͘͞ΒΠϯλʔωοτͷ4MBDLೝূج൫ ୈҰੈ୅ ฐࣾͰ͸0QFO-%"1͕ӡ༻͞Ε͍ͯͨ ύεϫʔυೝূج൫͸͋Δ͕ɺ4".-*E1͸ແ͍ ˣ ಠࣗʹ4".-*E1Λ࣮૷ 14

  14. ͘͞ΒΠϯλʔωοτͷ4MBDLೝূج൫ ୈҰੈ୅ 15

  15. ͘͞ΒΠϯλʔωοτͷ4MBDLೝূج൫ ୈҰੈ୅ 16

  16. ͘͞ΒΠϯλʔωοτͷ4MBDLೝূج൫ ୈҰੈ୅ • ࣮૷ • 1ZUIPO %KBOHPͰ࣮૷ • QZMEBQͰೝূ •

    4".-ͷಈ࡞͸ϑϧεΫϥον • 9.-ͷॺ໊͸YNMTFDΛར༻ • 5051ͱ'*%06'ʹΑΔೋཁૉೝূ • ήετ͸440ରԠͤͣ • 4MBDLҎ֎Ͱ΋ར༻ 17
  17. ͘͞ΒΠϯλʔωοτͷ4MBDLೝূج൫ ୈೋੈ୅ ୈೋͷؔ໳ ֤ࣾόϥόϥ 18

  18. ͘͞ΒΠϯλʔωοτͷ4MBDLೝূج൫ ୈೋੈ୅ • ೝূج൫͕ҟͳΔ • -%"1 • .JDSPTPGU"[VSF"%4".- • ಠࣗ4".-

    • ͳ͍ • ήετ΋؅ཧ͍ͨ͠ 19
  19. ͘͞ΒΠϯλʔωοτͷ4MBDLೝূج൫ ୈೋੈ୅ *E1Λෳ਺ར༻Ͱ͖ΔೝূϓϩΩγΛ։ൃ • -%"1 • ͘͞Βಠࣗͷ4".-*E1Λఏڙ • ͳ͍ •

    σʔλϕʔεࣜͷ؆қ*E1αʔόΛ։ൃ • ήετ΋ͪ͜ΒΛར༻ 20
  20. ͘͞ΒΠϯλʔωοτͷ4MBDLೝূج൫ ୈೋੈ୅ 21 ˞4".-ͷྲྀΕͷΠϝʔδͰ͋Γɺ࣮ࡍͷ)551ϨεϙϯεͷྲྀΕͰ͸͋Γ·ͤΜ

  21. ͘͞ΒΠϯλʔωοτͷ4MBDLೝূج൫ ୈೋੈ୅ • ࣮૷ • (PͰ࣮૷ • 4".-͸ϥΠϒϥϦΛར༻ github.com/crewjam/saml) •

    4$*."1*ͰϓϩϏδϣχϯά • ֤ࣾؒͷͳΓ͢·͠Λ๷͙ඞཁ͕͋Δ • ϩάΠϯ࣌ʹ*1ΞυϨεΛ%.Ͱ௨஌ 22
  22. ͘͞ΒΠϯλʔωοτͷ4MBDLೝূج൫ ୈೋੈ୅ 23

  23. ͘͞ΒΠϯλʔωοτͷ4MBDLೝূج൫ ୈೋੈ୅ 24

  24. ͘͞ΒΠϯλʔωοτͷ4MBDLೝূج൫ ୈೋੈ୅ 25

  25. ͘͞ΒΠϯλʔωοτͷ4MBDLೝূج൫ ୈೋੈ୅ *E1ʹΑΔೝূޙʹϓϩϏδϣχϯάΛߦ͏ • ॏෳ͠ͳ͍Ϣʔβʔ*%Λઃఆ • VTFSOBNFDPSQ FYZFHVTBTBLVSB • *%1άϧʔϓͷઃఆ

    26
  26. ͘͞ΒΠϯλʔωοτͷ4MBDLೝূج൫ ୈೋੈ୅ 27 *%1άϧʔϓͷΦʔτϓϩϏδϣχϯάΛར༻

  27. ͘͞ΒΠϯλʔωοτͷ4MBDLೝূج൫ ୈೋੈ୅ ήετʹର͢ΔಛผͳରԠ • ॏෳ͠ͳ͍Ϣʔβʔ*%Λઃఆ • VTFSOBNFDPSQ ZFHVTBHVFTU • *%1άϧʔϓͷઃఆ͸͠ͳ͍

    • ޡͬͯҰൠϢʔβʔͱͯ͠ࢀՃ͢Δ͜ͱΛ๷͙ 28
  28. ͘͞ΒΠϯλʔωοτͷ4MBDLೝূج൫ ୈೋੈ୅ 29 ύεϫʔυ͸ήετࣗ਎ʹઃఆͯ͠΋Β͏

  29. ͘͞ΒΠϯλʔωοτͷ4MBDLೝূج൫ ୈೋੈ୅ 30 ಉҙॻΛిࢠԽ

  30. ·ͱΊ ಋೖ ֤ࣾͷطଘͷೝূج൫Λͦͷ··׆༻ ಋೖͷϋʔυϧΛԼ͛Δ͜ͱ͕Ͱ͖ͨ ఆৗӡ༻͕؆୯ʹ 31 !

  31. ·ͱΊ ݁Ռ άϧʔϓؒͷίϛϡχέʔγϣϯ૿  ͷڞ༗νϟϯωϧ 32 !