UK Access Management Federation

Slides:



Advertisements
Similar presentations
Lousy Introduction into SWITCHaai
Advertisements

Joint Information Systems Committee 01/04/2014 | | Slide 1 Connecting People to Resources The JISC Access Management Strategy Nicole Harris Programme Manager.
Eduserv Athens Federations David Orrell Eduserv Athens Technical Architect.
FAME-PERMIS Project University of Manchester University of Kent London, July 2006.
Shibboleth Development and Support Services SDSS Development Federation Next Phase Sandy Shaw, EDINA JISC CM Programme Meeting, Windermere, 14–15 November.
KC-ROLO Project Kidderminster College Repository Of Learning Objects Graham Mason & Ed Beddows.
Joint Information Systems Committee 19/05/2015 | | Slide 1 Voyage of the UK JISC Federation: Shibbolising the UK’s Research, Higher and Further Education.
Copyright JNT Association 20051Optional Copyright JNT Association Joining the UK Access Management Federation 4th April.
1 Issues in federated identity management Sandy Shaw EDINA IASSIST May 2005, Edinburgh.
Electronic Authentication for Flexible Learning Workshop Presentation (5 August 2003) Chris Connolly, CEO, Galexia Consulting.
Copyright JNT Association 20051OptionalCopyright JNT Association 2007 Overview of the UK Access Management Federation Josh Howlett.
SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)
SWITCHaai Team Federated Identity Management.
Sierra Systems itSMF Development Days Presentation March 4 th, 2014 Colin James Assyst Implementation Specialist.
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
Module 10: Designing an AD RMS Infrastructure in Windows Server 2008.
To identity federation and beyond! Josh Howlett JANET(UK) HEAnet 2008.
Christopher Chapman | MCT Content PM, Microsoft Learning, PDG Planning, Microsoft.
Copyright JNT Association 2005Copyright JNT Association An Introduction to Access Management and the UK Federation Simon Cooper.
Lecture 23 Internet Authentication Applications modified from slides of Lawrie Brown.
SAML Right Here, Right Now Hal Lockhart September 25, 2012.
I2Q & WMnet Pilot Presented by Jason Rousell – i2Q Jay Neale - i2Q.
Michal Procházka, Jan Oppolzer CESNET.
AAI-enabled VO Platform “VO without Tears” Christoph Witzig EGI TF, Amsterdam, Sept 15, 2010.
Configuring Directory Certificate Services Lesson 13.
The UK Access Management Federation for education and research John Chapman, Project Adviser, Technical Policy & Standards.
Name Position Organisation Date. What is data integration? Dataset A Dataset B Integrated dataset Education data + EMPLOYMENT data = understanding education.
Using Enterprise Logins in Portal for ArcGIS via SAML Greg Ponto & Tom Shippee.
June 2007 Frontline staff SCONUL Access The largest borrowing scheme for higher education in the UK and Ireland.
Copyright JNT Association 20051Optional Copyright JNT Association The UK federation Mark Tysom, JANET(UK) 9 October 2007.
INTRODUCTION: THE FIRST TRY InCommon eduGAIN Policy and Community Working Group.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
All Unit Charter Renewals are due at the respective District’s Roundtable Meeting in November Last Updated 9/29/15.
Authentication and Authorisation for Research and Collaboration Christos Kanellopoulos GRNET Proposed Pilots for Libraries and eGov.
The UK Access Management Federation John Chapman Project Adviser – Becta.
Copyright JNT Association 20051Optional Copyright JNT Association The UK federation TNC - 22 nd May 2007 Mark Tysom, UKERNA.
JRA1.4 Models for implementing Attribute Providers and Token Translation Services Andrea Biancini.
KC-ROLO Project Kidderminster College Repository Of Learning Objects Graham Mason & Ed Beddows.
INTRODUCTION: THE FIRST TRY InCommon eduGAIN Policy and Community Working Group.
EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Interoperability Shibboleth - gLite Christoph.
Identities and Azure AD Premium
Shibboleth Use at the National e-Science Centre Hub Glasgow at collaborating institutions in the Shibboleth federation depending.
Slavko Kukrika MVP Connect Windows 10 to the Cloud – Cloud Join.
INTRODUCTION TO IDENTITY FEDERATIONS Heather Flanagan, NSRC.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
Authentication and Authorisation for Research and Collaboration Taipei - Taiwan Mechanisms of Interfederation 13th March 2016 Alessandra.
People Inc. from P&A Software
Applying eduGAIN to network operations The perfSONAR case
Deployment Planning Services
Cross-sector and user-centric AAI
Shibboleth Roadmap
SAML New Features and Standardization Status
eduTEAMS platform for collaboration Niels Van Dijk
InCommon Steward Program: Community Review
Building a National Access Management Infrastructure
SIP Report – Nov 2017 Overview Headlines Workstream report
ESA Single Sign On (SSO) and Federated Identity Management
Q3 Academic Year (January – March 2018)
Central e-Government Products: Current & Planned
EduTEAMS at a Glance Mandeep Saini Linz, Austria 30 May 2017.
GALILEO Approach and implementation
TNC - 22nd May 2007 Mark Tysom, UKERNA
People Inc. from P&A Software
Office 365 Identity Management
UK Federation 101 Ian A. Young EDINA, University of Edinburgh (and the UK Federation) Internet2 Fall Member Meeting, 7 Dec Shibboleth Development.
Community AAI with Check-In
ORCID: ADDING VALUE TO THE GLOBAL RESEARCH COMMUNITY
Protecting Privacy with Federated AA
Check-in Identity and Access Management solution that makes it easy to secure access to services and resources.
GIA Certified Innovation Masterclass (GIA-CIM®)
Presentation transcript:

UK Access Management Federation Joining the federation 5 December 2006 Mark Tysom, UKERNA

Overview Eligibility Steps to membership Options and considerations Outsourced identity management Application process

Who is eligible to join? All UK education and research institutions and commercial organisations providing services to those sectors.

Steps to membership Review ID management strategy 2. Develop user directories: to hold user’s status/entitlements/etc 3. Authentication development: implement an institutional authentication system

Steps to membership 4. Implement compatible Identity provider software linked to organisational directory and authentication systems 5. Join the federation: apply for membership and sign up to federation rules. 6. Deployment and roll out: staff training, user guides, etc.

Participation How? In-house Out-source Deploy own IdP infrastructure Purchase IdP service from a third party

Participation In-house: Benefits Considerations Retain strategic control over ID management Convergence of internal/external ID management Gain flexibility of AuthN info Considerations May require significant effort to consolidate authentication and authorisation infrastructure New technology to learn and deploy

Participation Out-source: Benefits Considerations Enables participation in the Federation with less effort than taking the In-house route. Considerations Effort required to manage user information User experience may be impaired Diminution of strategic control

Outsourced Identity Provision Both organisation and outsourcing third party must be federation members Organisation must provide: - contact details of outsourcing body - the entity name to be used - security domain(s) the outsourcer can assert on its’ behalf.

Applying for membership Two stage process: 1. Apply for membership online - ukfederation.org.uk/content/Documents/JoinFederation A written request on the organisation’s headed paper signed by a senior officer of the organisation. Authorised to bind the organisation to the federation Rules of Membership.

Applying for membership 2. Register IdP and/or SP entities Each of which will need an X.509 certificate Organisational details added to the metadata

Current Membership Approximately 20 IdPs and 10 SPs: from SDSS 3 new applications since 30th November: 2 SPs, 1 IdP

Questions?

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.