Presentation is loading. Please wait.

Presentation is loading. Please wait.

KEAS K-State Enterprise Authentication System CITAC April 26, 2002.

Published by Modified over 8 years ago

Similar presentations

Presentation on theme: "KEAS K-State Enterprise Authentication System CITAC April 26, 2002."— Presentation transcript:

1 KEAS K-State Enterprise Authentication System CITAC April 26, 2002

2 CITAC Briefing2 Project Management Staff Harvard Townsend Senior Management Sponsor harv@ksu.edu 532-6311 Neil Erdwien Senior Technical Sponsor neil@ksu.edu 532-4905 Chuck Gould Project Manager chuck@ksu.edu 532-4923 Project Web Site: keas.cns.ksu.edu

3 April 26, 2002CITAC Briefing3 Agenda Project scope – Harvard Authentication 101 – Neil Discussion/Questions

4 April 26, 2002CITAC Briefing4 The Goal Build a university-wide directory and authentication service to support authorized access to university information and technology resources. Store identity + role information about EVERYONE affiliated with K-State. Using state IT Project Management Methodology to guide the process Expect to complete phase I in April, 2003

5 April 26, 2002CITAC Briefing5 Why? Multiple IDs and passwords –Goal: One (few?) ID and password to remember –Goal: Uniform ID name space Complexity for user and for system administrators –Goal: Reduced frustration for users and simplified access to IT resources –Goal: Reduced management costs –Goal: Replace current CNS ID management system Support for distance students –Goal: Same access as resident students –Goal: Instant access

6 April 26, 2002CITAC Briefing6 Why? Support new applications –Foundation technology for III, SIS/FRS, digital library, portal, wireless networking, Peoplesoft 8, etc. Improve security –Fewer passwords to keep track of –Password stored in fewer places –Can force choosing “good” passwords –Simplifies shutting off people’s access

7 April 26, 2002CITAC Briefing7 Why? Authenticate with other universities –Goal: support EDUCAUSE EduPerson initiative –Goal: Inter-realm authentication with KU Transaction integrity (PKI) –Goal: encrypt e-mail –Goal: validate sender –Goal: guarantee message not altered

8 April 26, 2002CITAC Briefing8 Phase 1 Uniform ID/name space Build directory service with ID/password authentication Directory-enable central services managed by CNS: –Central e-mail server (POP/IMAP) –Central UNIX and Web servers –Netscape Calendar –SAMBA server –Remote access to library electronic journals and databases

9 April 26, 2002CITAC Briefing9 Phase 2 Possibilities K-State Online KATS Telecom dialup modems PeopleSoft Wireless network Novell NDS Microsoft Active Directory Departmental servers/applications

10 April 26, 2002CITAC Briefing10 Later Phases K-State Web Portal III SIS/FRS replacement Authenticate with other universities Public Key Infrastructure (PKI) for digital signatures, secure messaging Single sign-on where you authenticate once and get access to all the services you need without re- entering the authentication information

11 April 26, 2002CITAC Briefing11 Authentication 101 Neil Erdwien

12 April 26, 2002CITAC Briefing12

13 April 26, 2002CITAC Briefing13 Authentication vs. Authorization Authentication is checking credentials to verify identity Authorization is the use of identity to control access to resources

14 April 26, 2002CITAC Briefing14

15 April 26, 2002CITAC Briefing15

16 April 26, 2002CITAC Briefing16

17 April 26, 2002CITAC Briefing17

18 April 26, 2002CITAC Briefing18 Unified Name Space Existing systems have separate name spaces Integration with KEAS will have name conflicts Possible scenarios (3-8 character IDs) –Eliminate student license plate IDs? –Personal preference, first come, first serve for all faculty, staff, and students? –Standard naming convention? 1 st initial, first 7 characters of last name 1 st initial, 2 nd initial, first 6 characters of last name Conflict resolution, i.e. jsmith05@ksu.edujsmith05@ksu.edu Steering committee will decide in June.

19 April 26, 2002CITAC Briefing19 Questions?

20 April 26, 2002CITAC Briefing20

21 April 26, 2002CITAC Briefing21 Who Is On The Steering Committee? John Streeter, ISO Mike Crow, Registrar Patricia Havenstein, Human Resources Tom Schellhardt, VPAF Roger Terry, IET Robert Burgess, Housing Pat Akard, Faculty Senate Karen Cole, Hale Library Rebecca Gould, iTAC Rob Caffey, DCE Dave Hillier, DIA Gail Simmonds, Salina Andrew Bell, Student Senate

22 April 26, 2002CITAC Briefing22 How Long Will The Project Take? Project plan approved January 25, 2002. Requirements defined – January through mid-May 2002. LDAP solutions tested and selected – January through February 2002. Design developed – mid-May through June 2002. LDAP server implemented – July through October 2002. Phase 1 applications converted to KEAS – November through mid-February 2003. –UNIX, UNIX e-mail, Samba server –Hale Library services –K-State web server, central calendar server –E-mail forwarding, White pages Documentation finalized, project closeout – mid-April 2003.

Download ppt "KEAS K-State Enterprise Authentication System CITAC April 26, 2002."

Similar presentations

Defining the Security Domain Marilu Goodyear John H. Louis University of Kansas.

Defining the Security Domain Marilu Goodyear John H. Louis University of Kansas.
Credentialing, Levels of Assurance and Risk: What’s Good Enough Dr. Michael Conlon Director of Data Infrastructure University of Florida.

Credentialing, Levels of Assurance and Risk: What’s Good Enough Dr. Michael Conlon Director of Data Infrastructure University of Florida.
Identity Management at the University of Florida Mike Conlon, Director of Data Infrastructure University of Florida, Gainesville, Florida Background Identity.

Identity Management at the University of Florida Mike Conlon, Director of Data Infrastructure University of Florida, Gainesville, Florida Background Identity.
Building the Future: Millennium’s Relationship with Campus Systems and Services John Culshaw Faculty Director for Systems University of Colorado at Boulder.

Building the Future: Millennium’s Relationship with Campus Systems and Services John Culshaw Faculty Director for Systems University of Colorado at Boulder.
Certification Authority. Overview  Identifying CA Hierarchy Design Requirements  Common CA Hierarchy Designs  Documenting Legal Requirements  Analyzing.

Certification Authority. Overview  Identifying CA Hierarchy Design Requirements  Common CA Hierarchy Designs  Documenting Legal Requirements  Analyzing.
Emory University Case Study I2 Day Camp November 5, 2010 John Ellis & Elliot Kendall.

Emory University Case Study I2 Day Camp November 5, 2010 John Ellis & Elliot Kendall.
Identity Management Realities in Higher Education NET Quarterly Meeting January 12, 2005.

Identity Management Realities in Higher Education NET Quarterly Meeting January 12, 2005.
Password?. Project CLASP: Common Login and Access rights across Services Plan

Password?. Project CLASP: Common Login and Access rights across Services Plan
PKI Activities at Virginia January 2004 CSG Meeting Jim Jokl.

PKI Activities at Virginia January 2004 CSG Meeting Jim Jokl.
Exchange Network Key Management Services A Security Component February 28, 2005 The Exchange Network Node Mentoring Workshop.

Exchange Network Key Management Services A Security Component February 28, 2005 The Exchange Network Node Mentoring Workshop.
Prepared by Dept. of Information Technology & Telecommunication, October 24, 2005 Enterprise Directory Services and Identity Management.

Prepared by Dept. of Information Technology & Telecommunication, October 24, 2005 Enterprise Directory Services and Identity Management.
Active Directory: Final Solution to Enterprise System Integration

Active Directory: Final Solution to Enterprise System Integration
16.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.

16.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.
CNI Fall 1998 Access Management Requirements and Approaches Joan Gargano California Digital Library

CNI Fall 1998 Access Management Requirements and Approaches Joan Gargano California Digital Library
The PKI Lab at Dartmouth. Dartmouth PKI Lab R&D to make PKI a practical component of a campus network Multi-campus collaboration sponsored by the Mellon.

The PKI Lab at Dartmouth. Dartmouth PKI Lab R&D to make PKI a practical component of a campus network Multi-campus collaboration sponsored by the Mellon.
Public Key Infrastructure at the University of Pittsburgh Robert F. Pack, Vice Provost Academic Planning and Resources Management March 27, 2000 CNI Spring.

Public Key Infrastructure at the University of Pittsburgh Robert F. Pack, Vice Provost Academic Planning and Resources Management March 27, 2000 CNI Spring.
Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.

Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.
Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.

Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.
Polytechnic University of Tirana Faculty of Information Technology Computer Engineering Department Identification of on-line users and Digital Signature.

Polytechnic University of Tirana Faculty of Information Technology Computer Engineering Department Identification of on-line users and Digital Signature.
Security and Policy Enforcement Mark Gibson Dave Northey

Security and Policy Enforcement Mark Gibson Dave Northey

Similar presentations

Ads by Google