Attending: Dan G, Billy B., Kevin S. John K, Mark S., Mike McC, Craig DeS, Jack F and Richard M.

Continuation of previous meeting in July in which we discussed using Wolftech to replace etssauth servers and Sun IDM integration.

Craig gave an overview of how the portal et al currently used the Auth Tree eDir, and it's requirements.  We discussed how AD password policies differ, and covered some workflows about what would happen if one's basic access to one's desktop was controlled by the P1..P5 security policies.

We discussed how including Parents and other non-Unity-ID holding people to the Portal might impact other services using WolfTech for authn/authz.

John is going to work with Richard to get the WolfTest cerificate chains needed for Richard to test SAR against that domain.  Craig is going to consider storing last password changed date and security policy in the active directory, but computing his own elapsed time rather than having the system deactivate the account.  This would allow revoking rights to the portal, but not locking the user out of everything based on password age.