Presentation is loading. Please wait.

Presentation is loading. Please wait.

Wednesday Sessions. 2 Demonstrations & Discussions PASE, U Wisc, Steve Devoti & Mark Weber I2 services, Internet2, Mike LaHaye WS-Grouper, Cornell, Joy.

Published byJaylin Meador Modified over 9 years ago

Similar presentations

Presentation on theme: "Wednesday Sessions. 2 Demonstrations & Discussions PASE, U Wisc, Steve Devoti & Mark Weber I2 services, Internet2, Mike LaHaye WS-Grouper, Cornell, Joy."— Presentation transcript:

1 Wednesday Sessions

2 2 Demonstrations & Discussions PASE, U Wisc, Steve Devoti & Mark Weber I2 services, Internet2, Mike LaHaye WS-Grouper, Cornell, Joy Veronneau MyVocs, UAB, Jill Gemmill & John-Paul Robinson Clinical Roles & Privs, FCCC, Frank Manion

3 3 Synthesis, Gaps Signet & grouper fitness for purpose –Gap between current state and potential participant usage AuthZ mgmt practice: current vs. desired Next steps Workshop format & program

4 4 Signet & Grouper Fitness for Purpose Consistency, packaging, “I2MI common criteria” –Unnecessary differences, internationalization, customization & “upgrade protection”, common quick-start package –Better error handling Work on interfaces for provisioning –Web services, LDAP, XML, XACML?… Is Grouper UI usable by the masses? If we provide web services interface, do we need to provide UIs? Do we need LDAP integration (in particular)? Subject API has promise Somehow support dynamic groups

5 5 AuthZ Management Practice: Current vs. Desired We grok groups, less so rich privilege structures –Need clearer articulation of a comprehensive authZ management model & case studies –Experiences at Stanford, U Wash, UC Irvine, others? –Identify solutions to common problems? E.g. paper-based access approval workflows We get that distributing authority requires an authZ management infrastructure, but we don’t get how to hook that up to operational infrastructures –Interfaces for provisioning need work –Develop best practices –Models for aggregating distant authorities

6 6 Next Steps Develop orienting materials –AuthZ recipe –Integrated framework for I2MI tools Develop best practices –Survey leading to white paper Further product development –Meet I2MI common criteria (that we must define) –Web services

7 7 Workshop Format & Program Install Fest –Lacked sufficient orienting reference architecture –Have hard copy of install fest instructions –Post-install test suite Workshop –Cover the API(s) themselves Insert feedback here…

Download ppt "Wednesday Sessions. 2 Demonstrations & Discussions PASE, U Wisc, Steve Devoti & Mark Weber I2 services, Internet2, Mike LaHaye WS-Grouper, Cornell, Joy."

Similar presentations

Learning and Teaching Conference 2012 Skill integration for students through in-class feedback and continuous assessment. Konstantinos Dimopoulos City.

Learning and Teaching Conference 2012 Skill integration for students through in-class feedback and continuous assessment. Konstantinos Dimopoulos City.
Integration Technologies for Grouper & Signet Tom Barton, U Chicago Joy Veronneau, Cornell Gary Brown, U Bristol Lynn McRae, Stanford.

Integration Technologies for Grouper & Signet Tom Barton, U Chicago Joy Veronneau, Cornell Gary Brown, U Bristol Lynn McRae, Stanford.
ECHO: NASA’s E os C learing HO use Integrating Access to Data Services Michael Burnett Blueprint Technologies, 7799 Leesburg.

ECHO: NASA’s E os C learing HO use Integrating Access to Data Services Michael Burnett Blueprint Technologies, 7799 Leesburg.
Your Logo Here An Administrative Framework for the Blackboard Academic Suite Presented By Chris J Jones University of Oklahoma HSC April 13, 2005.

Your Logo Here An Administrative Framework for the Blackboard Academic Suite Presented By Chris J Jones University of Oklahoma HSC April 13, 2005.
WORKDAY TECHNOLOGY Stan Swete CTO - Workday 1.

WORKDAY TECHNOLOGY Stan Swete CTO - Workday 1.
Beyond Paper: Records Preservation in the Digital World Nien-Ling Wacker, CEO LaserFiche Document Imaging www.laserfiche.com.

Beyond Paper: Records Preservation in the Digital World Nien-Ling Wacker, CEO LaserFiche Document Imaging
Widely Distributed Access Management Tom Barton University of Chicago.

Widely Distributed Access Management Tom Barton University of Chicago.
Setting up the Grouper and Signet Databases Joy Veronneau Cornell University Identity Management November 7, 2006.

Setting up the Grouper and Signet Databases Joy Veronneau Cornell University Identity Management November 7, 2006.
User Group 2015 Version 5 Features & Infrastructure Enhancements.

User Group 2015 Version 5 Features & Infrastructure Enhancements.
A Model for Enterprise Group and Affiliation Management RL “Bob” Morgan University of Washington CAMP, June 2005.

A Model for Enterprise Group and Affiliation Management RL “Bob” Morgan University of Washington CAMP, June 2005.
Combining KMIP and XACML. What is XACML? XML language for access control Coarse or fine-grained Extremely powerful evaluation logic Ability to use any.

Combining KMIP and XACML. What is XACML? XML language for access control Coarse or fine-grained Extremely powerful evaluation logic Ability to use any.
Signet and Grouper for Distributed Attribute Administration

Signet and Grouper for Distributed Attribute Administration
Upgrading to Novell ® SecureLogin 3.5 Rod Tietjen,

Upgrading to Novell ® SecureLogin 3.5 Rod Tietjen,
Authorization Scenarios with Signet RL “Bob” Morgan University of Washington Internet2 Member Meeting, September 2004.

Authorization Scenarios with Signet RL “Bob” Morgan University of Washington Internet2 Member Meeting, September 2004.
06.07.2000 Slide 1 Wolfram Höpken RMSIG Reference Model Special Interest Group Second RMSIG Workshop Methodology and Process Wolfram Höpken.

Slide 1 Wolfram Höpken RMSIG Reference Model Special Interest Group Second RMSIG Workshop Methodology and Process Wolfram Höpken.
1 Early Adopters / Deployers Patterns and criteria for distinguishing roles and groups-based access control vs. privilege management. Why use one or the.

1 Early Adopters / Deployers Patterns and criteria for distinguishing roles and groups-based access control vs. privilege management. Why use one or the.
I2/NMI Update: Signet, Grouper, & GridShib Tom Barton University of Chicago.

I2/NMI Update: Signet, Grouper, & GridShib Tom Barton University of Chicago.
INTEGRATION WITH OTHER IDM SOLUTIONS Remember… The primary goal of KIM was to build a service- oriented abstraction layer for Identity and Access Management.

INTEGRATION WITH OTHER IDM SOLUTIONS Remember… The primary goal of KIM was to build a service- oriented abstraction layer for Identity and Access Management.
CFO Summit. Microsoft Business Solutions Customer Relationship Management (aka Microsoft CRM) Building Profitable Customer Relationships Alex Simons Product.

CFO Summit. Microsoft Business Solutions Customer Relationship Management (aka Microsoft CRM) Building Profitable Customer Relationships Alex Simons Product.
April 30, 2007 openSUSE.org Build Service a short introduction Moiz Kohari VP Engineering.

April 30, 2007 openSUSE.org Build Service a short introduction Moiz Kohari VP Engineering.

Similar presentations

Ads by Google