摘要:

本文主要描述国立台北艺术大学(Taipei National University of the Arts, TNUA)，在自主开发建置单一帐号签入统整各校务行政资讯系统的过程架构及方法。以分享系统实务流程经验，建构整合校园行政系统资讯入口(Enterprise Information Portal, EIP)，及学校e-mail单一帐号登入(Single sign-on, SSO)，便利使用教务系统、学务系统、人事系统、电子邮件、资讯查询等各项校园资讯系统，提供实务开发经验分享应用。开发流程重点于帐号管理设定、轻量级目录存取协定(Lightweight Directory Access Protocol, LDAP)资料架构设计及建置、LDAP应用程序接口、帐号开启系统及帐号整合机制规划。运用OpenLDAP原理延伸目录服务管理大幅降低软体建置成本，且资讯系统的程序开发语言皆有支持LDAP API，迅速修改系统认证机制，达成单一登入之开发。

Abstract: This paper mainly introduces the self-development of the integration of Single sign-on (SSO) and Enterprise Information Portal (EIP) for academic administration information system of TaipeiNationalUniversityof the Arts (TNUA). The purposes are to share the practical systems experience regarding EIP and email SSO, improve the convenience for using academic administration information systems including academic information system, student affairs system, human resource information system, email, information inquiry, etc. Besides, it could substantially reduce the development cost by applying the Open Lightweight Directory Access Protocol (OpenLDAP) theory and the developing system language could also support LDAP Application interface to efficiently revise system recognition mechanism to reach the SSO development. The key processes for this whole design include account management, data design and construction for Lightweight Directory Access Protocol and LDAP, application program interface (API) for LDAP, account opening system, and account integration design.