Your Key to Privacy, Security, and Access to Services

Slides:



Advertisements
Similar presentations
Esri International User Conference | San Diego, CA Demo Theater | ArcGIS Beta Community and ArcGIS 10.1 Beta Program Mike Hogan & Rohit Gupta July 12 th,
Advertisements

Office 365 Identity June 2013 Microsoft Office365 4/2/2017
Access & Identity Management “An integrated set of policies, processes and systems that allow an enterprise to facilitate and control access to online.
Agenda AD to Windows Azure AD Sync Options Federation Architecture
Certification Authority. Overview  Identifying CA Hierarchy Design Requirements  Common CA Hierarchy Designs  Documenting Legal Requirements  Analyzing.
Emory University Case Study I2 Day Camp November 5, 2010 John Ellis & Elliot Kendall.
Copyright JNT Association 20051Optional Copyright JNT Association Joining the UK Access Management Federation 4th April.
T Network Application Frameworks and XML Service Federation Sasu Tarkoma.
1 eAuthentication in Higher Education Tim Bornholtz Session #47.
UC Irvine’s Pre-Shib Attribute Setup PH / QI Directory Provides Authoritative Attribute Store –Had both Faculty / Staff and Student Information UCI’s Campus.
UCLA’s Shibboleth Plan Shibboleth is an integral part of UCLA’s Enterprise Directory & Identity Management Infrastructure (EDIMI) Project Integrate with.
Copyright JNT Association 20051OptionalCopyright JNT Association 2007 Overview of the UK Access Management Federation Josh Howlett.
Credential Provider Operational Practices Statement CAMP Shibboleth June 29, 2004 David Wasley.
Australian Access Federation Robert Hazeltine Identity and Access Management Enterprise Systems Office.
The InCommon Federation The U.S. Access and Identity Management Federation
Troubleshooting Federation, AD FS 2.0, and More…
1 The Partnership Challenge Higher education’s missions are realized in increasingly global, collaborative, online relationships –Higher educations’ digital.
Single Sign-On Multiple Benefits via Alaska K20 Identity Federation 20 May 2011 BTOP Partner Meeting Anchorage, Alaska 20 May 2011 BTOP Partner Meeting.
Exploring InCommon Getting Started with InCommon: Creating Your Roadmap.
TNC2004 Rhodes 1 Authentication and access control in Sympa mailing list manager Serge Aumont & Olivier Salaün May 2004.
ArcGIS Server and Portal for ArcGIS An Introduction to Security
Belnet Federation Belnet – Loriau Nicolas Brussels – 12 th of June 2014.
U.S. Department of Agriculture eGovernment Program July 15, 2003 eAuthentication Initiative Pre-Implementation Status eGovernment Program.
UCLA Enterprise Directory Identity Management Infrastructure UC Enrollment Service Technical Conference October 16, 2007 Ying Ma
The I-Trust Federation: Federating the University of Illinois Keith Wessel Identity Management Service Manager University of Illinois at Urbana-Champaign.
Presented by: Presented by: Tim Cameron CommIT Project Manager, Internet 2 CommIT Project Update.
An Overview of Single Sign-On, Federation, Its Benefits, and Basic Procedures for Integrating Applications.
Shibboleth: An Introduction
Shibboleth Access Management System Walter Hoehn & David Millman, Columbia University.
Holly Eggleston, UCSD Shibboleth and Library Resources InCommon Library/Shibboleth Project.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
Federated Identity Graduates Nate Klingenstein Internet2 APAN 27 高雄台湾, March 3, 2009.
University of Washington Identity and Access Management IEEAF – RENU Network Design Workshop Seattle - 29 Nov 2007 Lori Stevens, Director, Distributed.
Holly Eggleston, UCSD Beyond the IP Address: Shibboleth and Electronic Resources InCommon Library/Shibboleth Project.
E-Authentication October Objectives Provide a flexible, easy to implement authentication system that meets the needs of AES and its clients. Ensure.
Strategic Agenda We want to be connected to the internet……… We may even want to host our own web site……… We must have a secure network! What are the.
Shibboleth at USMAI David Kennedy Spring 2006 Internet2 Member Meeting, April 24-26, 2006 – Arlington, VA.
SAML Interoperability Lab RSA Conference Agenda SAML and the OASIS SSTC SAML Timeline Brief SAML History SAML Interop Lab Q & A Demo.
1 Identities and Federation: The Next IT Wave (The Canadian Access Federation) Rick Bunt President The Canadian University Council of CIOs (CUCCIO)
WSO2 Identity Server 4.0 Fall WSO2 Carbon Enterprise Middleware Platform 2.
Agenda  Microsoft Directory Synchronization Tool  Active Directory Federation Server  ADFS Proxy  Hybrid Features – LAB.
INTRODUCTION TO IDENTITY FEDERATIONS Heather Flanagan, NSRC.
CCSAS V2 Impacts on Business and Legal Processes October 4, 2006.
Virtual Directory Services and Directory Synchronization May 13 th, 2008 Bill Claycomb Computer Systems Analyst Infrastructure Computing Systems Department.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
The FederID project The First Identity Management and Federation Free Software.
L’Oreal USA RSA Access Manager and Federated Identity Manager Kick-Off Meeting March 21 st, 2011.
Web SSO with Cloud Resources using AD Federation Services
Using Your Own Authentication System with ArcGIS Online
Federated Identity Management at Virginia Tech
LIGO Identity and Access Management
Introducing Access Management
Single Sign-On Led by Terrice McClain, Jen Paulin, & Leighton Wingerd
Analyn Policarpio Andrew Jazon Gupaal
Federation Systems, ADFS, & Shibboleth 2.0
Prime Service Catalog 12.0 SAML 2.0 Single Sign-On Support
John O’Keefe Director of Academic Technology & Network Services
NMMU Upgrade Integrator 3 Integrator UG 2014 Greg Saunders
Introduction How to combine and use services in different security domains? How to take into account privacy aspects? How to enable single sign on (SSO)
Shibboleth Implementation in EZproxy
ESA Single Sign On (SSO) and Federated Identity Management
Linking Users, Resources, & Data Driven Decisions with OpenAthens
IP Filtering is Obsolete Where do we go from here?
How to Design and Implement Research Outputs Repositories
Overview and Development Plans
Authentication and Authorization Federation
Device Registration and Multi-Factor Authentication
Shibboleth 2.0 IdP Training: Introduction
BPOS to Office 365 Transition for Existing BPOS Customers
Presentation transcript:

Your Key to Privacy, Security, and Access to Services Andrew Baldwin, MS, IT Sr. Manager, Johns Hopkins University Etan Weintraub, Sr. Software Engineer, January 12, 2011 2011 Mid-Atlantic Conference

Agenda Problem Web SSO @ Hopkins Timeline Benefits Challenges Keys to Success 2011 Mid-Atlantic Conference

Problem Multiple systems creating and storing user credentials Confusion for customers (What ID/Password needed?) External application access compounds issue Hundreds of internal applications 2011 Mid-Atlantic Conference

WebSSO @ Hopkins SiteMinder – Default internal Web SSO BlueJay - Internal Federation InCommon – External Federation 2011 Mid-Atlantic Conference

CA SiteMinder Hundreds of applications Primarily for internal applications Provides Web Single Sign On Centralized Credential Collection 2011 Mid-Atlantic Conference

Blue Jay Internal Federation Internally Hosted Sympa email distribution list application EZProxy InfoSuite – Welch Medical Library Portal Multiple internally developed applications 2011 Mid-Atlantic Conference

Blue Jay Internal Federation Externally Hosted Benefits enrollment (Mercer – SAML consumer) Online pay statements (ADP – SAML consumer) Sakai Learnshare 2011 Mid-Atlantic Conference

InCommon Applications Project Muse Internet 2 request to participate in InCommon Met with Project Muse team InCommon setup CRMS Medical Research application Local Hospitals NIH 2011 Mid-Atlantic Conference

Timeline 2000 - 2005 – Centralized Directory 2005 – CA SiteMinder 2006 - Camp Shibboleth 2006 - Blue Jay Internal Federation 2007 - InCommon Participant 2008 - Project Muse 2010 - CRMS 2011 Mid-Atlantic Conference

Benefits Reduce Sign On Control attribute release InCommon recommended attribute release InCommon setup – do it once Credentials centrally collected 2011 Mid-Atlantic Conference

Challenges Identity provider setup to centralized directory Technical Understanding Costs Legal Customers understanding WAYF/Discovery Service 2011 Mid-Atlantic Conference

JHU Logon Page 2011 Mid-Atlantic Conference

Discovery Service 2011 Mid-Atlantic Conference

Keys to Success Management support Application owner support Customer acceptance Technical team Community support 2011 Mid-Atlantic Conference

What is needed? Centralized Directory Shibboleth Software Participate InCommon Federation Servers Identity Provider Train technical staff 2011 Mid-Atlantic Conference

Questions? 2011 Mid-Atlantic Conference

Contact Information Andy Baldwin Andrew.Baldwin@jhu.edu (410) 735-4268 Etan Weintraub eweintra@jhmi.edu (410) 735-7945 2011 Mid-Atlantic Conference

Useful Sites http://Shibboleth.internet2.edu http://www.incommonfederation.org 2011 Mid-Atlantic Conference

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.