CNI Spring 2006 Task Force Meeting

Slides:



Advertisements
Similar presentations
Shibboleth at Cardiff University Lindsay Roberts Project Manager – Shibboleth Implementation Phase 2.
Advertisements

FAME-PERMIS Project University of Manchester University of Kent London, July 2006.
College An insight Into the College VLE Graham Mason
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI AAI in EGI Status and Evolution Peter Solagna Senior Operations Manager
Access & Identity Management “An integrated set of policies, processes and systems that allow an enterprise to facilitate and control access to online.
KC-ROLO Project Kidderminster College Repository Of Learning Objects Graham Mason & Ed Beddows.
PDS User Management DigiTool Version 3.0. User Management 2 PDS Overview PDS Setup Single Sign On Agenda.
ELAG Trondheim Distributed Access Control - BIBSYS and the FEIDE solution Sigbjørn Holmslet, BIBSYS, Norway Ingrid Melve, UNINET, Norway.
Beta Testing: The Contractor’s Perspective Trns·port User Group Meeting October 2005.
Access management for repositories: challenges and approaches for MAMS James Dalziel Professor of Learning Technology and Director, Macquarie E-Learning.
Enterprise Architecture 2013 ITLC & ITAG Leadership Meeting Discussion Points April 9, 2013.
NELLI, The Finnish National Electronic Library Interface Ari Rouvari ELAG 2004 Trondheim.
Building the Future: Millennium’s Relationship with Campus Systems and Services John Culshaw Faculty Director for Systems University of Colorado at Boulder.
SALSA-NetAuth SALSA-FWNA BoF Kevin Miller Duke University Internet2 Member Meeting May 2005.
JISC Metaleth Project Athens, Shibboleth and the University of Bristol 29 th January 2007.
1 eAuthentication in Higher Education Tim Bornholtz Session #47.
Information Resources and Communications University of California, Office of the President UCTrust Implementation Experiences David Walker, UCOP Albert.
Academic Services Interactive Media Managing the Web with Java JA-SIG Winter 2002 Robert Sherratt Academic Services, Interactive Media.
June 30, 2004CAMP Shibboleth Implementation Workshop Shibboleth Mockup - ARP GUI Management by Steven Carmody Brown University proxy Walter Hoehn.
National Aeronautics and Space Administration Implementing DSpace at NASA Langley Research Center 1 Greta Lowe Librarian NASA Langley Research Center
Shibboleth: Improving Access for Library Users InCommon Library/Shibboleth Project Holly Eggleston, UC San Diego.
Shibboleth-intro-dec051 Shibboleth A Technical Overview Tom Scavo NCSA.
SUNY System Administration Federation Overview Gavin Hogan July 15th, 2009 A work in progress….
Update Finland TF-EMC Mikael Linden CSC, the Finnish IT Center for Science.
Shibboleth for Real Dave Kennedy
David Kennedy, UMD Shibboleth and Library Resources Internet2 Library/Shibboleth Project.
CAS Lightning Talk Jasig-Sakai 2012 Tuesday June 12th 2012 Atlanta, GA Andrew Petro - Unicon, Inc.
ERA OneView Gateway to eRA. 2 Agenda Business Case Business Case Functional Case Functional Case Prototype Prototype Technical Case Technical Case Timeline.
U.S. Department of Agriculture eGovernment Program eGovernment Working Group Meeting February 11, 2004.
Real Life Solution, Real Life Problems: A-Select, An Open Source Federated Identity Management Solution An Identity 1.0 story Maarten Koopmans SURFnet,
Shibboleth: An Introduction
Internet2 Middleware Initiative Shibboleth Ren é e Shuey Systems Engineer I Academic Services & Emerging Technologies The Pennsylvania State University.
Holly Eggleston, UCSD Shibboleth and Library Resources InCommon Library/Shibboleth Project.
Shibboleth: Status and Pilots. The Golden Age of Plywood.
Technical Topics for Deployed Campuses: Web SSO Will Norris University of Southern California.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
Shibboleth: OSU Early Adoption Scenarios Scott Cantor April 10, 2003 Scott Cantor April 10, 2003.
Shibboleth at USMAI David Kennedy Spring 2006 Internet2 Member Meeting, April 24-26, 2006 – Arlington, VA.
Towards a Unified Authentication, Authorisation and Accounting Infrastructure Patrick Kirk Chief Technical Officer (YHGfL) Lifelong Learning Infrastructure.
February, TRANSCEND SHIRO-CAS INTEGRATION ANALYSIS.
PORTALS WORKSHOP REPORT (group 7) ELAG 2004 Trondheim, Norway
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI Evolution of AAI for e- infrastructures Peter Solagna Senior Operations Manager.
Shibboleth at USMAI David Kennedy Spring 2006 Internet2 Member Meeting, April 24-26, 2006 – Arlington, VA.
Federated Wireless Network Authentication Kevin Miller Duke University Internet2 Joint Techs Salt Lake City February, 2005.
Shibboleth Use at the National e-Science Centre Hub Glasgow at collaborating institutions in the Shibboleth federation depending.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
Office of Information Technology GT Identity and Access Management JA-SIG CAS project (introducing login.gatech.edu) April 29th,
Web SSO with Cloud Resources using AD Federation Services
Shibboleth and eLibrary
Using Your Own Authentication System with ArcGIS Online
Shibboleth Roadmap
Using E-Business Suite Attachments
Shibboleth Integration Fairfield University
California State University CSUconnect Federation
Prime Service Catalog 12.0 SAML 2.0 Single Sign-On Support
Alma at Strathclyde.
Welcome to the 20th Anniversary of the IUG
e-Infrastructure Workshop 28th March 2006, University of Leeds
User Authentication and Metrics Parallel Session 4b - Friday, May 4 at 09:00 in Room 4 - Session Leaders: Steve Browdy, Lucia Lovison AIP-5 Kickoff.
ESA Single Sign On (SSO) and Federated Identity Management
GALILEO Approach and implementation
Overview and Development Plans
Agenda Introductions Brief review of our project charge
Software engineering -1
Road Manager Module National Heavy Vehicle Regulator
Implementation and Introduction to Users
Supporting Institutions Towards a Shibbolized Infrastructure
Shibboleth for Real: USMAI and Ex Libris Collaborate
Shibboleth: Status and Pilots
Presentation transcript:

CNI Spring 2006 Task Force Meeting Shibboleth for Real Oren Beit-Arie Ex Libris Group CNI Spring 2006 Task Force Meeting April 3-4, 2006 – Arlington, VA

Shibboleth and Ex Libris – Past Work Project Goals Establish SFX as a Shibboleth target (Service Provider) Main motivation: enable role-based features Started discussions with the Internet2/Shibboleth group in Summer 2001 Integrated SFX as a Shibboleth Target (0.9…) as part of Pilot/Alpha Testing in 2002 Rolled out test system to 2 Pilot sites Conclusion - too early to assess the value of such an integration Early stage of Shibboleth development No real Shibboleth adoption in libraries Not enough biz case: role-based entitlements in SFX weren’t a priority

Shibboleth and Ex Libris – Current Work Goals: Focus on local library system’s integration with Shib Specific interest in consortia (including hybrid shib/non-shib) Method: ‘Shibbolize’ the Patron Directory Services (PDS) module

Patron Directory Services (PDS) Module Aleph Authentication AuthN sys Credentials/ID MetaLib Authentication PDS DigiTool Authentication User File * Facilitates a single point of integration with authentication systems for Ex Libris products * Simplifies maintenance * Provides infrastructure for single sign-on (SSO) across Ex Libris products * Accommodates consortia with different institutional AuTN/AuTZ services * Enables easier integration with institutional frameworks (e.g. Shibboleth) Other Applications Other Authentication Systems ID/Attributes

PDS – Authentication hub to Shibboleth AuthN sys Credentials/ID PDS User File Other Applications ID/Attributes

Shibboleth and Ex Libris – Current Work Began working with several MetaLib customers Summer 2005 PDS serves dual roles as the Shibboleth Service Provider and, in consortia, as the Shibboleth WAYF SSO fully or partially implemented to suit institutional MetaLib workflow Results – successful implementations at three MetaLib sites Some good input on future direction… Help identify pre-requisites

Current Integration Projects University System of Maryland (USMAI) successfully implemented MetaLib/Shibboleth integration in a test environment National Library of Finland (FinELib) upgraded existing MetaLib/Shibboleth integration As of late-February 2006, six FinELib institutions are live with with a seventh institution nearly complete University of Newcastle upon Tyne completed beta testing MetaLib/Shibboleth integration Included an automatic sign-in (SSO) Uni of Newcastle’s implementation differs from USMAI and FinELib: At Newcastle, a user with a Shibboleth session is automatically logged in to MetaLib – SSO is fully configured – while users who do not have a Shibboleth session access MetaLib as guests. At FinELib and USMAI, users access MetaLib as guests with Shibboleth authentication invoked only after a subsequent login request by the user.

Lessons Learned PDS/MetaLib implementations vary – requires flexibility to accommodate customer’s unique requirements Shibboleth/PDS/MetaLib integration approaches also vary to accommodate the authentication/authorization workflow of each customer’s unique environment… Customers must have a good technical understanding of Shibboleth, PDS/MetaLib Recent projects enabled Ex Libris to identify customer prerequisites for successful PDS/Shibboleth integration with MetaLib Ex.Pre-Reqs: Implement a Shibboleth Identity Provider that can provide user attributes necessary for MetaLib to make authorization decisions Implement logout functionality suitable for their environment Implement the latest versions of MetaLib and related components Integration with Shibboleth Version 1.2 or 1.3 is supported

Next Steps Gradually roll out Shibboleth support for MetaLib – general release TBD Continue working with customers interested in ‘Shibbolizing’ PDS for MetaLib authentication Interested customers must complete integration prerequisites Continue documenting guidelines and best practices for successful Shibboleth/PDS/Ex Libris product integration

Open Issues Policies/Guidelines Functions/scenarios Development: Is there a need for better support or consultancy mechanisms to support large-scale implementation? Federations: InCommon, HAKA - what about the rest of the world? Functions/scenarios Sign-off (Shib v.2?) How to accommodate multiple roles of users? Development: Shib & Metasearch - API/Web services (v.2?) Be able to release OpenURL’s baseURL attribute

Oren Beit-Arie oren@exlibris-usa.com Shibboleth for real Oren Beit-Arie oren@exlibris-usa.com

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.