24 October 2007 Fernando Lucas Rodriguez Adaptation of HyperNews for the NICE (SSO) authentication.

Slides:

Advertisements

Similar presentations

MFA for Business Banking – Security Code Multifactor Authentication: Quick Tip Sheets Note to Financial Institutions: We are providing these QT sheets.

Advertisements

MY NCBI (module 4.5). MODULE 4.5 PubMed/How to Use MY NCBI Instructions - This part of the: course is a PowerPoint demonstration intended to introduce.

AmeriCorps is introducing a new online payment system for the processing of AmeriCorps forms

Single Sign-On with GRID Certificates Ernest Artiaga (CERN – IT) GridPP 7 th Collaboration Meeting July 2003 July 2003.

Pharos Uniprint 8.3.

“The Honeywell Web-based Corrective Action Solution”

Managing User, Computer and Group Accounts

Profile Support Team Setting Up Your User Account on Profile e-portfolio Click to progress through this tutorial.

RTÉ eCommissioning A Guide to the Company Administration.

Research and Innovation Participant Portal How to register for an ECAS account NEXT.

Managing Student Access. What will we cover Registration Options Student Uploads Login Options Alumni Access versus Student Access.

iRequestManager for MediMizer X3

Forms Authority Database Store Username and Passwords: ASP.NET framework allows you to control access to pages, classes, or methods based on username and.

Members Only & Login Modules Members Only works with the Login module to provide password protection to Web pages and files. Login Groups may be created.

For new coming user, you need to request account before log-in to the system by 1. Go to 2. Click “Register”

FIspace Security Components FIspace Security Components NetFutures 2015 FIspace project Javier Romero Negrín Javier Hitado Simarro ATOS Serdar Arslan KoçSistem.

IP Address Management and Request Service Kim Huynh CS491B.

Bonrix Track & Trace System A GPS Based Vehicle Tracing System (SMS, GPRS/3G, Offline) Bonrix Software Systems Ahmedabad (INDIA) Website:

Distributed Software Development VLab common project status.

Setting up in Outlook Express. Select “Tools” from the toolbar menu.

December 5, OBIEE Technical Conference Security Overview Dan Malone.

WP6: Grid Authorization Service Review meeting in Berlin, March 8 th 2004 Marcin Adamski Michał Chmielewski Sergiusz Fonrobert Jarek Nabrzyski Tomasz Nowocień.

Nina Drozd Supervisor: Fearghal Morgan Co-Supervisor: Martin Glavin Project Progress Presentation.

Confidential - © 2012 StreamWIDE © StreamWIDE

OSIA Portal 2009 Mid-Term Presentation Nazim Öztahtaci Jiawei Chen Parvinder Gill Ye Tian Xin Guo Communication System Design 2009 Fall Mid-Term Workshop.

V 0.1Slide 1 Security – System Configuration How to configure WebSAMS? Access Control Other Information Configuration  system customization  system configuration.

Finish configuration cloudclinica root jdbc:postgresql:5432//localhost/cc_db JDBC Url: JDBC Driver: User name: Password: ******** org.postgresql.Driver.

Students are able to generate a one-time login through their VTAC User Account.  The login details will need to be forwarded to the person nominated to.

1 Working with Domains When this module is complete, you will be able to:  Identify what a domain is  Save a domain as a.tar file  Edit and delete domains.

Computer Scoring Le Grand Concours 2011 and beyond.

In the web address box enter Enter your user ID (first and last initial 7 digit ID number) Select Log in.

Information Management System “ Expert Profile Module" Information Management System “ Expert Profile Module" The Expert Profile module is an integrated.

3. User Admin October 1, 2008 Version : 5.0. UG_ _A User ManualGlovis India TMS Project 2 1. User Management Overview Generation, modification,

Final Project Implementation of Basic Authentication.

How to Log-in to EPIC for the First Time. to FY 2015 Form 471 Authorized Signer Looks Like:

Instructions for Administrators Choose the Enrollment slide decks that match your environment, either for SaaS or On Premise. Edit the red text to match.

SOCPA Connect Plus Patient Portal. Intro to the Follow My Health Patient Portal.

Information Management System “Good Practice Module" Information Management System “Good Practice Module" The Good Practice / Success Stories module is.

Securing Sensitive Information Data Security Dashboards often contain the most important data in the company Securing that information makes business.

How to Request for “Patseer Patent Database” Password Gujarat Technological University.

Page 1 User Accounts Lecture 3 Hassan Shuja 09/21/2004.

This is a short presentation to explain how and why to login to the CIM website as a member. Benefits are: Access to myCIM (private member area, contains.

MEMBERSHIP AND IDENTITY Active server pages (ASP.NET) 1 Chapter-4.

Online Parking System.

Setting Up TGO User Accounts. Creating User Accounts for Other Users If your company has other users who need to use the Active Orders system, your company’s.

Configuring and Troubleshooting Identity and Access Solutions with Windows Server® 2008 Active Directory®

Flowcharts By: Carolina Suarez 10 c.

End-of Sprint Demo Sprint 1 “Auth Module, beta Release” Robert Wagner Jessica Lundberg Erik Roos.

Enigma Mutiara Sdn Bhd Computer Based Learning (CBL) HSE Procedures.

ASSIGNMENT 2 Salim Malakouti. Ticketing Website  User submits tickets  Admins answer tickets or take appropriate actions.

Information Management System “Project Module" Information Management System “Project Module" The Project module is an integrated part of System. The back.

Adviser Panel. Go to All DD Track Advisers: Click “Advisor Login”

CSCI 530 Lab Passwords. Overview Authentication Passwords Hashing Breaking Passwords Dictionary Hybrid Brute-Force Rainbow Tables Detection.

1 /6 Introducing TaxWise Online’s Administrator Functions © 2006, Universal Tax Systems, Inc. All Rights Reserved. Administrator Functions Objectives –In.

© 2015 Eaton. All Rights Reserved.. Supplier Registration and Access.

CERN IT Department CH-1211 Genève 23 Switzerland t Single Sign On, Identity and Access management at CERN Alex Lossent Emmanuel Ormancey,

Lindsey Velez, Director of Instructional Technology Single Sign-On One Click.

SAP R/3 User Administration1. 2 User administration in a productive environment is an ongoing process of creating, deleting, changing, and monitoring.

Alfresco and 2 Factor Authentication Ermanno Russo Developer at Zaizi.

BARDEN JUNIOR SCHOOL How to Use School . By C Carey.

The Login Page is the first page your customers

An authorized user can make payments on your account by logging on with their own username and password. Click on the Authorized Users tab to add an authorized.

iShop Training Module Access & Security

AIM/education directory (Ed dir)

Multi-Factor Authentication

Multifactor Authentication & First Time Login

OPS235 Lab4: Investigations 5 – 9

1- Open Cambridge LMS page:

Administrator’s Manual

Module 1.3 Introduction to the HFR Administration Module

Presentation transcript:

24 October 2007 Fernando Lucas Rodriguez Adaptation of HyperNews for the NICE (SSO) authentication

Origins of the Module Developed by IT as a authentication extension for Apache by Arne Trodahl and Andreas Wagner. Written in Perl. I converted into and independent file, returning the proper exit codes for the HN external authentication mechanism. (I also had to change a bit the rest of the code). You can check it in the TOTEM installation.scripts/NICE.pm

Current Status Only authentication, not authorization. The users account are always local to HN. Or the user is able to register himself (belongs to the proper group), or I will register manually, assigning the same username than in NICE... The password is checked against the IT webservice and against the internal database. If any of both matches, access is allowed.

Full integration with SSO The IT webservice is able to check against NICE groups. There should be a NICE group for every HN installation with the list of allowed users. When the user tries to login, check that belongs to the NICE group also. Problems: the special user for binding with mailing lists. the admin user. generate the user accounts 'on the fly' when first logged using NICE credentials? or no user account at all? disable the possibility of changing the user password? automatic removal of old accounts?

Conclusions HN is a very small part of my time (about 2% I can imagine). I cannot implement the full SSO integration. All what I wanted was not to invent a new password and sent it to the users every time I had to register manually any of them. Authentication works with lightweight accounts. (I register manually -as administrator- a user with the username same as the lightweight mail address). I have not done any test sending s. The user list is not generated properly.