Wednesday Sessions. 2 Demonstrations & Discussions PASE, U Wisc, Steve Devoti & Mark Weber I2 services, Internet2, Mike LaHaye WS-Grouper, Cornell, Joy.

Slides:

Advertisements

Similar presentations

Learning and Teaching Conference 2012 Skill integration for students through in-class feedback and continuous assessment. Konstantinos Dimopoulos City.

Advertisements

Integration Technologies for Grouper & Signet Tom Barton, U Chicago Joy Veronneau, Cornell Gary Brown, U Bristol Lynn McRae, Stanford.

ECHO: NASA’s E os C learing HO use Integrating Access to Data Services Michael Burnett Blueprint Technologies, 7799 Leesburg.

Your Logo Here An Administrative Framework for the Blackboard Academic Suite Presented By Chris J Jones University of Oklahoma HSC April 13, 2005.

WORKDAY TECHNOLOGY Stan Swete CTO - Workday 1.

Beyond Paper: Records Preservation in the Digital World Nien-Ling Wacker, CEO LaserFiche Document Imaging

Widely Distributed Access Management Tom Barton University of Chicago.

Setting up the Grouper and Signet Databases Joy Veronneau Cornell University Identity Management November 7, 2006.

User Group 2015 Version 5 Features & Infrastructure Enhancements.

A Model for Enterprise Group and Affiliation Management RL “Bob” Morgan University of Washington CAMP, June 2005.

Combining KMIP and XACML. What is XACML? XML language for access control Coarse or fine-grained Extremely powerful evaluation logic Ability to use any.

Signet and Grouper for Distributed Attribute Administration

Upgrading to Novell ® SecureLogin 3.5 Rod Tietjen,

Authorization Scenarios with Signet RL “Bob” Morgan University of Washington Internet2 Member Meeting, September 2004.

Slide 1 Wolfram Höpken RMSIG Reference Model Special Interest Group Second RMSIG Workshop Methodology and Process Wolfram Höpken.

1 Early Adopters / Deployers Patterns and criteria for distinguishing roles and groups-based access control vs. privilege management. Why use one or the.

I2/NMI Update: Signet, Grouper, & GridShib Tom Barton University of Chicago.

INTEGRATION WITH OTHER IDM SOLUTIONS Remember… The primary goal of KIM was to build a service- oriented abstraction layer for Identity and Access Management.

CFO Summit. Microsoft Business Solutions Customer Relationship Management (aka Microsoft CRM) Building Profitable Customer Relationships Alex Simons Product.

April 30, 2007 openSUSE.org Build Service a short introduction Moiz Kohari VP Engineering.

Signet and Grouper A Use Case Study for Central Authorization at Cornell University March 2006.

Using Grouper and Signet for Access Management Kathryn Huxtable GPN Annual Meeting 30 May 2008

Kevin James Prototype Systems Devloper Novell Inc. Freddy Kaiser Technical Directory, Enterprise Solutions Novell Inc. BUS172 - Case Study: Extended Provisioning.

ArcGIS Server for Administrators

NA-MIC National Alliance for Medical Image Computing UCSD: Engineering Core 2 Portal and Grid Infrastructure.

Sakaibrary: Integrating Licensed Library Resources with Sakai 29 November 2006 Steve Smail Mark Notess.

Internet2 Member Meeting, Arlington VA, April 2004 I2MI Authorization Agenda, RL "Bob" Morgan, University of Washington.

KS configuration application workshop Kuali Days :: Chicago May 13-14, 2008.

COGNOS 8BI Introduction and Architecture

Simplifying EAI Paul Butterworth Forté Software Inc. HPTS 99.

Introducing More4Apps Introducing.. More4Apps

Blackboard Building Blocks Looking Ahead Thursday, December 03, 2015 Dan McFadyen, Tracy Engwirda, Tom Joyce.

© 2006 The University of Chicago Grouper Backgrounder for Authorization WG Tom Barton, U Chicago.

Grouper Tom Barton University of Chicago. I2MM Spring Outline  Grouper’s place in the world  Some Grouper guts  Deployment scenarios.

CoOL: A Context Ontology Language to Enable Contextual Interoperability Thomas Strang, Claudia Linnhoff-Popien, and Korbinian Frank German Aerospace Centor.

OSG Integration Activity Report Rob Gardner Leigh Grundhoefer OSG Technical Meeting UCSD Dec 16, 2004.

Grouper Training Developers and Architects Integration Chris Hyzer Internet2 University of Pennsylvania This work licensed under a Creative Commons Attribution-NonCommercial.

Presented by Vishy Grandhi.  Architecture (Week 1) ◦ Development Environments ◦ Model driven architecture ◦ Licensing and configuration  AOT (Week 2)

U.S. Department of the Interior U.S. Geological Survey Decision Support Tools and USGS Data Management Best Practices Cassandra Ladino USGS Chesapeake.

Designing Enterprise Corporate Web Sites using SharePoint 2010 Paul Stubbs Technical Evangelist Microsoft.

David Walker California State University San Marcos Doing More with Metalib The X-Server.

Program Assessment User Session Experts (PAUSE) Information Sessions: RSS & Subscription Services October , 2006.

Current Middleware Picture Tom Barton University of Chicago Tom Barton University of Chicago.

ThinStructure: An Overview Support for ThinStructure demonstration. Jean Georges Perrin – Annandale, 21 st April 2004.

The UW-Madison IAM Experience Building our Dream Home Presented by Steve Devoti, Senior IT Architect © 2007 Board of Regents of the University of Wisconsin.

Authorization: Just when you thought middleware was no fun anymore Keith Hazelton, Senior IT Architect, Univ. of Wisconsin-Madison Member, Internet2 Middleware.

Grouper attributes and privileges FUTURE features in Internet2 MACE Grouper June 2009 Chris Hyzer University of Pennsylvania Internet2.

LHCONE Monitoring Thoughts June 14 th, LHCOPN/LHCONE Meeting Jason Zurawski – Research Liaison.

Introducing Novell ® Identity Manager 4 Insert Presenter's Name (16pt) Insert Presenter's Title (14pt) Insert Company/ (14pt)

1 SAIC XMSF Update XMSF Workshop & MOVES Open House 4-5 August 2003 Katherine L. Morse, Ph.D., David L. Drake, Ryan.

Introduction to Terra Dotta Applications Integration with Campus Data Systems for institutions beginning their software implementation.

Monitoring and Information Services Core Infrastructure (MIS-CI) Service Description Mark L. Green OSG Integration Workshop at UC Feb 15-17, 2005.

De Rigueur - Adding Process to Your Business Analytics Environment Diane Hatcher, SAS Institute Inc, Cary, NC Falko Schulz, SAS Institute Australia., Brisbane,

AM18 DATA INTEGRATION TODAY AND TOMORROW Henning Lund, RapidiOnline.

From Source Code to Packages and even whole distributions By Cool Person From openSUSE.

SUSE Studio: Building distributions By Cool Person From openSUSE.

UW-Madison. BUILDING A DISTRIBUTED ACCESS MANAGEMENT INFRASTRUCTURE Reports from the Real World.

I2/NMI Update: Signet, Grouper, & GridShib

© LiqVid eLearning Services Pvt Ltd

Cisco’s Intelligent Automation for Cloud

Privilege Management: the Big Picture

Tools for Composing and Deploying Grid Middleware Web Services

NSF Middleware Initiative: GridShib

Open Source Web Initial Sign-On Packages

JavaServer Faces: The Fundamentals

Signet Privilege Management

Scott Thorne & Chuck Shubert

Signet & Privilege Management

Signet Privilege Management

Presentation transcript:

Wednesday Sessions

2 Demonstrations & Discussions PASE, U Wisc, Steve Devoti & Mark Weber I2 services, Internet2, Mike LaHaye WS-Grouper, Cornell, Joy Veronneau MyVocs, UAB, Jill Gemmill & John-Paul Robinson Clinical Roles & Privs, FCCC, Frank Manion

3 Synthesis, Gaps Signet & grouper fitness for purpose –Gap between current state and potential participant usage AuthZ mgmt practice: current vs. desired Next steps Workshop format & program

4 Signet & Grouper Fitness for Purpose Consistency, packaging, “I2MI common criteria” –Unnecessary differences, internationalization, customization & “upgrade protection”, common quick-start package –Better error handling Work on interfaces for provisioning –Web services, LDAP, XML, XACML?… Is Grouper UI usable by the masses? If we provide web services interface, do we need to provide UIs? Do we need LDAP integration (in particular)? Subject API has promise Somehow support dynamic groups

5 AuthZ Management Practice: Current vs. Desired We grok groups, less so rich privilege structures –Need clearer articulation of a comprehensive authZ management model & case studies –Experiences at Stanford, U Wash, UC Irvine, others? –Identify solutions to common problems? E.g. paper-based access approval workflows We get that distributing authority requires an authZ management infrastructure, but we don’t get how to hook that up to operational infrastructures –Interfaces for provisioning need work –Develop best practices –Models for aggregating distant authorities

6 Next Steps Develop orienting materials –AuthZ recipe –Integrated framework for I2MI tools Develop best practices –Survey leading to white paper Further product development –Meet I2MI common criteria (that we must define) –Web services

7 Workshop Format & Program Install Fest –Lacked sufficient orienting reference architecture –Have hard copy of install fest instructions –Post-install test suite Workshop –Cover the API(s) themselves Insert feedback here…