Presentation is loading. Please wait.

Presentation is loading. Please wait.

Access & Identity Management “An integrated set of policies, processes and systems that allow an enterprise to facilitate and control access to online.

Published byAllie Denney Modified over 9 years ago

Similar presentations

Presentation on theme: "Access & Identity Management “An integrated set of policies, processes and systems that allow an enterprise to facilitate and control access to online."— Presentation transcript:

1 Access & Identity Management “An integrated set of policies, processes and systems that allow an enterprise to facilitate and control access to online resources for their users” RSA Security No magic bullet Not about technology itself

2 Organisational Single sign-on – the future Local web resourcesExternal web resources VLE Portal OPAC Database Journals Local authentication System usernames & passwords User attributes Names, email, role Directory SSO Authentication transfer protocol e.g SAML, Shibboleth, AthensDA Single copy of data managed centrally accurate & reliable & secure Users become accountable & auditable

3 Beyond IP authentication: Federation Service Providers Identity Providers Athens Resources Registry Athens agents AthensDA Shib SAML Institutional Directory Institutional Data source Bulk Upload Self registration IP Resources Proxies Individual recognition from day one Patron attribution Comprehensive statistics 300 premium content vendors user management tools designed for librarians

4 Athens Agent Resource First Access Athens Authentication Point Athens Authority Server Create SSO session Long Term Token Session Token User signs on with Athens or local authentication Check session token. Get attributes. Session token HTTP refer for authentication Session token Athens Cookie Long Term Token 1 2 4 3 5 6 7 8 9 Athens Single Sign-on

5 Millions of users Worldwide

6 2000+ institutions

7 Single Sign-on (SSO)

8 Identity Management

9 User Provisioning

10 Management Information - usage statistics - audit

11 Integrates with - Shibboleth - EZproxy - Active Directory - etc

12 Standards Policies Attributes EduPerson

13 Case Study 1

14

15

16 Individual Patron id’s – usable anywhere using the student no as patron id Uploaded automatically from student registry No personal data to allay privacy concerns Staff registered manually Next step –Integration with Campus Directory

17 Tamera Hanken says I chose this service because I needed something that would be reliable, easy and quick to implement, and cost effective in terms of equipment and my time. With this method we had to do nothing to enable our network system to use Athens. Based on how easy it was to begin using, how reliable it is, students didn’t find it cumbersome or confusing—we decided to purchase Customer service has been friendly and prompt

18 Case Study 2

19

20

21

22

23

24 Tailored self registration Library promotes URL of self registration form Organisational defined info –Campus, role, faculty – whatever Request validated by librarian or IP address Statistics by any defined category Account usable anywhere

Download ppt "Access & Identity Management “An integrated set of policies, processes and systems that allow an enterprise to facilitate and control access to online."

Similar presentations

Introducing…. Brand new content platform from John Wiley & Sons (replacing Wiley InterScience) New user interface delivers intuitive navigation for all.

Introducing…. Brand new content platform from John Wiley & Sons (replacing Wiley InterScience) New user interface delivers intuitive navigation for all.
Athens and Shibboleth ® : the choices Phil Leahy Athens Product Manager.

Athens and Shibboleth ® : the choices Phil Leahy Athens Product Manager.
Shibboleth and UKAMF-FEAR not as scary as it sounds! Rhys Smith Cardiff University.

Shibboleth and UKAMF-FEAR not as scary as it sounds! Rhys Smith Cardiff University.
Secure Single Sign-On Across Security Domains

Secure Single Sign-On Across Security Domains
Federated Access implementation: experience of AUCA Library - Kyrgyzstan 4 th -7 th June, 2008, Aberdeen, Scotland Sania Battalova, EIFL Country and FOSS.

Federated Access implementation: experience of AUCA Library - Kyrgyzstan 4 th -7 th June, 2008, Aberdeen, Scotland Sania Battalova, EIFL Country and FOSS.
Lousy Introduction into SWITCHaai

Lousy Introduction into SWITCHaai
Open Grid Forum 19 January 31, 2007 Chapel Hill, NC Stephen Langella Ohio State University Grid Authentication and Authorization with.

Open Grid Forum 19 January 31, 2007 Chapel Hill, NC Stephen Langella Ohio State University Grid Authentication and Authorization with.
Eduserv Athens Federations David Orrell Eduserv Athens Technical Architect.

Eduserv Athens Federations David Orrell Eduserv Athens Technical Architect.
Next Generation Athens Services Ed Zedlewski UK e-Science Town Meeting, London, 11 April 2005.

Next Generation Athens Services Ed Zedlewski UK e-Science Town Meeting, London, 11 April 2005.
OhioNET EZProxy Service

OhioNET EZProxy Service
Office 365 Identity June 2013 Microsoft Office365 4/2/2017

Office 365 Identity June 2013 Microsoft Office365 4/2/2017
ELAG Trondheim 2004 1 Distributed Access Control - BIBSYS and the FEIDE solution Sigbjørn Holmslet, BIBSYS, Norway Ingrid Melve, UNINET, Norway.

ELAG Trondheim Distributed Access Control - BIBSYS and the FEIDE solution Sigbjørn Holmslet, BIBSYS, Norway Ingrid Melve, UNINET, Norway.
Access management for repositories: challenges and approaches for MAMS James Dalziel Professor of Learning Technology and Director, Macquarie E-Learning.

Access management for repositories: challenges and approaches for MAMS James Dalziel Professor of Learning Technology and Director, Macquarie E-Learning.
Vivien Cook Regional Account Manager, Northern & Eastern Europe Lund Online – 11 th October 2006.

Vivien Cook Regional Account Manager, Northern & Eastern Europe Lund Online – 11 th October 2006.
Shibboleth: EBSCOhost implementation Lech Wojtowicz Director of Software Development EBSCO Publishing Access 2003 October 3, 2003.

Shibboleth: EBSCOhost implementation Lech Wojtowicz Director of Software Development EBSCO Publishing Access 2003 October 3, 2003.
Authentication Systems and Single Sign-On (SSO) David Orrell, Eduserv Athens 1st EuroCAMP, 2-4 March 2005, Turin, Italy.

Authentication Systems and Single Sign-On (SSO) David Orrell, Eduserv Athens 1st EuroCAMP, 2-4 March 2005, Turin, Italy.
GLAM: Global Access Management Sally Chambers University of London TF-AACE Workshop, Malaga: 20 th – 21 st November, 2003 What e-learners and e-librarians.

GLAM: Global Access Management Sally Chambers University of London TF-AACE Workshop, Malaga: 20 th – 21 st November, 2003 What e-learners and e-librarians.
Cloud app Cloud app Cloud app Separate username/password sign-in Manual or semi-automated provisioning Active Directory App Separate username/password.

Cloud app Cloud app Cloud app Separate username/password sign-in Manual or semi-automated provisioning Active Directory App Separate username/password.
Identity Management – Why and How Experiences at CU-Boulder Copyright Linda Drake, Director of Development and Integration, University of Colorado, Boulder,

Identity Management – Why and How Experiences at CU-Boulder Copyright Linda Drake, Director of Development and Integration, University of Colorado, Boulder,
Developments in Access and Identity Management Phil Leahy – Athens Product Manager.

Developments in Access and Identity Management Phil Leahy – Athens Product Manager.

Similar presentations

Ads by Google