Presentation is loading. Please wait.

Presentation is loading. Please wait.

SSO Roadmap ΑΚΑΔΗΜΑΪΚΟ ΔΙΑΔΙΚΤΥΟ Pavlos Drandakis June 2019.

Published byDavid Verhoeven Modified over 4 years ago

Similar presentations

Presentation on theme: "SSO Roadmap ΑΚΑΔΗΜΑΪΚΟ ΔΙΑΔΙΚΤΥΟ Pavlos Drandakis June 2019."— Presentation transcript:

1 SSO Roadmap ΑΚΑΔΗΜΑΪΚΟ ΔΙΑΔΙΚΤΥΟ Pavlos Drandakis June 2019

2 Identity/SSO latest developments
Protocols Adaptive Authentication Risk Based Authentication (RBA) Multi Factor Authentication (MFA) Just In Time provisioning (JIT) System for Cross domain Identity Management (SCIM) SSO Administration User Attribute Consent (UAC) GUnet SSO Roadmap, © 2019 Greek Academic Network All Rights Reserved 2

3 Connection Protocols Supported Protocols CAS v1, v2
SAML v1.1 (attributes) CAS v3 (attributes) SAML v2 (federated Services, Drupal – WP plugins) OAuth2 OpenID Connect GUnet SSO Roadmap, © 2019 Greek Academic Network All Rights Reserved 3

4 Adaptive Authentication
Accept or reject authentication requests based on Geolocation (Country) IP Browser Time GUnet SSO Roadmap, © 2019 Greek Academic Network All Rights Reserved 4

5 Risk Based Authentication
Calculate Risk based on: Geolocation info IP Browser Time Actions Stop Authentication MFA Notify User (sms, ) GUnet SSO Roadmap, © 2019 Greek Academic Network All Rights Reserved 5

6 Multi Factor Authentication (MFA)
Username/password + SMS (GUnet SMS service) Mobile Smart Applications (i.e. Google Authenticator) GUnet SSO Roadmap, © 2019 Greek Academic Network All Rights Reserved 6

7 Multi Factor Authentication (MFA)
MFA Triggers/Scenarios Globally, for all services For specific services (or part of services) For specific users For specific IP, Browsers, Countries (Adaptive Authentication) Based on calculated risk (Risk Based Authentication) GUnet SSO Roadmap, © 2019 Greek Academic Network All Rights Reserved 7

8 JIT provisioning – SCIM
Make SSO the Identity Provider for Google Apps Microsoft Office 365 Other SAML2/Cloud Services GUnet SSO Roadmap, © 2019 Greek Academic Network All Rights Reserved 8

9 SSO Administration Server Management Utilities/Web Interface
Logs & Audits Surrogate athentication/Impersonate user GUnet SSO Roadmap, © 2019 Greek Academic Network All Rights Reserved 9

10 User Attribute Consent (UAC)
Let user: Approve release of attributes Control reminders Manage/delete previous consents GUnet SSO Roadmap, © 2019 Greek Academic Network All Rights Reserved 10

11 SSO Roadmap Questions? Thank you
GUnet SSO Roadmap, © 2019 Greek Academic Network All Rights Reserved 11

Download ppt "SSO Roadmap ΑΚΑΔΗΜΑΪΚΟ ΔΙΑΔΙΚΤΥΟ Pavlos Drandakis June 2019."

Similar presentations

Identity Network Ideals – Heterogeneity & Co-existence

Identity Network Ideals – Heterogeneity & Co-existence
Mobile Device Management Intune-Configmanager CHANDAN BHARTI PREMIER FIELD ENGINEER-MICROSOFT.

Mobile Device Management Intune-Configmanager CHANDAN BHARTI PREMIER FIELD ENGINEER-MICROSOFT.
Microsoft Identity Solutions

Microsoft Identity Solutions
FIspace Security Components FIspace Security Components NetFutures 2015 FIspace project Javier Romero Negrín Javier Hitado Simarro ATOS Serdar Arslan KoçSistem.

FIspace Security Components FIspace Security Components NetFutures 2015 FIspace project Javier Romero Negrín Javier Hitado Simarro ATOS Serdar Arslan KoçSistem.
Digital DNA Server Login People ®. Login People ˃ IT security vendor ˃ Patented Digital DNA ® technology innovation Digital DNA Server Multi-factor Authentication.

Digital DNA Server Login People ®. Login People ˃ IT security vendor ˃ Patented Digital DNA ® technology innovation Digital DNA Server Multi-factor Authentication.
WSO2 Identity Server Road Map

WSO2 Identity Server Road Map
Infocard and Eduroam Enrique de la Hoz, Diego R. L ó pez, Antonio Garc í a, Samuel Mu ñ oz.

Infocard and Eduroam Enrique de la Hoz, Diego R. L ó pez, Antonio Garc í a, Samuel Mu ñ oz.
T-110.5140 Network Application Frameworks and XML Service Federation 30.04.2007 Sasu Tarkoma.

T Network Application Frameworks and XML Service Federation Sasu Tarkoma.
1 Trillion Azure AD authentications since the release of the service 50 M Office 365 users active every month >1 Billion authentications every.

1 Trillion Azure AD authentications since the release of the service 50 M Office 365 users active every month >1 Billion authentications every.
Active Directory federation user provisioning.

Active Directory federation user provisioning.
Microsoft Ignite /16/2017 4:55 PM

Microsoft Ignite /16/2017 4:55 PM
Active Directory federation user provisioning.

Active Directory federation user provisioning.
Cloud app Cloud app Cloud app Separate username/password sign-in Manual or semi-automated provisioning Active Directory App Separate username/password.

Cloud app Cloud app Cloud app Separate username/password sign-in Manual or semi-automated provisioning Active Directory App Separate username/password.
Prabath Siriwardena Senior Software Architect. An open source Identity & Entitlement management server.

Prabath Siriwardena Senior Software Architect. An open source Identity & Entitlement management server.
Identity Management in Education. Welcome Scott Johnson, NetProf, Inc. Creator of OmnID Identity Management for Education www.netprof.us.

Identity Management in Education. Welcome Scott Johnson, NetProf, Inc. Creator of OmnID Identity Management for Education
Distributed Web Security for Science Gateways Jim Basney In collaboration with: Rion Dooley Jeff Gaynor

Distributed Web Security for Science Gateways Jim Basney In collaboration with: Rion Dooley Jeff Gaynor
Identity Management Marco Casassa Mont Trusted E-Services Lab Hewlett-Packard Laboratories Bristol, UK June 2002.

Identity Management Marco Casassa Mont Trusted E-Services Lab Hewlett-Packard Laboratories Bristol, UK June 2002.
Exploring InCommon Getting Started with InCommon: Creating Your Roadmap.

Exploring InCommon Getting Started with InCommon: Creating Your Roadmap.
FIspace SPT Seyhun Futaci. Technology behind FIspace Authentication and Authorization IDM service of Fispace provides SSO solution for web apps, mobile.

FIspace SPT Seyhun Futaci. Technology behind FIspace Authentication and Authorization IDM service of Fispace provides SSO solution for web apps, mobile.
Copyright ©2012 Ping Identity Corporation. All rights reserved.1.

Copyright ©2012 Ping Identity Corporation. All rights reserved.1.

Similar presentations

Ads by Google