Presentation is loading. Please wait.

Presentation is loading. Please wait.

Federated Access implementation: experience of AUCA Library - Kyrgyzstan 4 th -7 th June, 2008, Aberdeen, Scotland Sania Battalova, EIFL Country and FOSS.

Published byJames Duncan Modified over 10 years ago

Similar presentations

Presentation on theme: "Federated Access implementation: experience of AUCA Library - Kyrgyzstan 4 th -7 th June, 2008, Aberdeen, Scotland Sania Battalova, EIFL Country and FOSS."— Presentation transcript:

1 Federated Access implementation: experience of AUCA Library - Kyrgyzstan 4 th -7 th June, 2008, Aberdeen, Scotland Sania Battalova, EIFL Country and FOSS Coordinator, Kyrgyzstan EIFL General Assembly 2011 Minsk, Belarus Belarus National Library June 26 - 28, 2011

2 AUCA Background Information Former American University in Kyrgyzstan - Founded in 1993 – privet Liberal Arts University 11 Degree programs and MBA 1,200 students (40% men and 60% women) – undergraduates and graduate from 15 countries 125 full-time faculty Merged Library/IT Structure

3 University Library Electronic Resources and Databases – off-campus access Electronic books - Ebrary - Subscribed collection of 35,000 titles of electronic books Electronic periodicals – more then 15,000 titles at 13 databases AUCA digital Library – Open Electronic Repository and the University Documents Archive EIFL General Assembly 2011 Minsk, Belarus Belarus National Library June 26 - 28, 2011

4 University On-line Services: Off-campus access to AUCA Library Databases and Archives Library patrons authentication System E-course System (Moodle) E-portfolio System (Mahara) On-line Registration and Students Portal On-line Evaluation Students Career Service Alumni Service System Discussion Forum (for local needs) EIFL General Assembly 2011 Minsk, Belarus Belarus National Library June 26 - 28, 2011

5 AUCA Users Authentication System Primary authentication source - Active Directory. Every user is assigned an Active Directory account that they must use to access University services Based on organization units distributed roles for students, employees, guests and administrators. RADIUS (Remote Authentication Dial-in-User Service) - allows authentication realization, authorization and registration, by means of using remote access policies (RAP). LDAP (Lightweight Directory Access Protocol) - application protocol for reading and editing directories over IP network - uses for Off- campus access (EZProxy, ePortfolio authentication and for Federal Access). EIFL General Assembly 2011 Minsk, Belarus Belarus National Library June 26 - 28, 2011

6

7 Why Federated Access in AUCA? For our users – only single window for authentication to access to all services Single Point of access – one Username and Password to access all on-line services Once accessed you dont need to login to all different services The services and data may be located outside the University. Future Cooperation EIFL General Assembly 2011 Minsk, Belarus Belarus National Library June 26 - 28, 2011

8 University level (AUCA): For federated authentication and authorization infrastructure internally Consortium level (KLIC): In getting a pilot in Kyrgyzstan Identity Federation started, Library consortium resource providers to use federated authentication and authorization infrastructure Federated Access: from University to Country level EIFL General Assembly 2011 Minsk, Belarus Belarus National Library June 26 - 28, 2011

9 Federated Access – University Level – AUCA Experience Selection of SP (Service Provider ) and IdP (Identity Provider) software Selection criteria: MS Windows/Linux, Java/PHP, Shibboleth/simpleSAMLphp University IT staff qualification EIFL General Assembly 2011 Minsk, Belarus Belarus National Library June 26 - 28, 2011

10 simpleSAMLphp (http://simplesamlphp.org/) as IdP and SP for AUCAhttp://simplesamlphp.org/ Set up simpleSAMLphp (IdP and SP) http://login.auca.kg/idp/ - AUCA authorization page createdhttp://login.auca.kg/idp/ For security reasons SSL certificate has been registered - www.startssl.com - free of charge www.startssl.com Connection between created IdP and AUCA Active Directory AUCA Idp and SP connection EIFL General Assembly 2011 Minsk, Belarus Belarus National Library June 26 - 28, 2011

11 AUCA authorization web- page (AUCA IdP) EIFL General Assembly 2011 Minsk, Belarus Belarus National Library June 26 - 28, 2011

12 Challenges New software, no experience Time consuming Coordination between IT offices – IdP and SP set up and local databases, and the University Authentication rules EIFL General Assembly 2011 Minsk, Belarus Belarus National Library June 26 - 28, 2011

13 Benefits and the Future Plans Work experience (Shibboleth and simpleSAMLphp) and trained IT staff Promotion Federated Access in AUCA – easy access to on-line service Promotion Federated Access among Kyrgyz Libraries Information Consortium (training sessions for IT staff and librarians) – new way of Kyrgyz libraries cooperation CAREN EIFL General Assembly 2011 Minsk, Belarus Belarus National Library June 26 - 28, 2011

14 Thank you! Contact information: Sania Battalova – battalovas@mail.auca.kgbattalovas@mail.auca.kg EIFL General Assembly 2011 Minsk, Belarus Belarus National Library June 26 - 28, 2011

Download ppt "Federated Access implementation: experience of AUCA Library - Kyrgyzstan 4 th -7 th June, 2008, Aberdeen, Scotland Sania Battalova, EIFL Country and FOSS."

Similar presentations

Lousy Introduction into SWITCHaai

Lousy Introduction into SWITCHaai
Www.gisela-grid.eu Grid Initiatives for e-Science virtual communities in Europe and Latin America The VRC-driven GISELA Science Gateway Diego Scardaci.

Grid Initiatives for e-Science virtual communities in Europe and Latin America The VRC-driven GISELA Science Gateway Diego Scardaci.
PERSEUS : Portal-enabled Resources via Shibbolized End-user Security 16 May 2005JISC Core Middleware Programme Meeting, Loughborough 1 PERSEUS Project.

PERSEUS : Portal-enabled Resources via Shibbolized End-user Security 16 May 2005JISC Core Middleware Programme Meeting, Loughborough 1 PERSEUS Project.
Open Electronic Library – from initiative to reality at the community of Kyrgyz libraries 4 th -7 th June, 2008, Aberdeen, Scotland Sania Battalova AUCA,

Open Electronic Library – from initiative to reality at the community of Kyrgyz libraries 4 th -7 th June, 2008, Aberdeen, Scotland Sania Battalova AUCA,
Joanna Cooksey, Subject Librarian Oxford Brookes University Logging into Athens: a brief guide.

Joanna Cooksey, Subject Librarian Oxford Brookes University Logging into Athens: a brief guide.
EVERY CONNECTION has a starting point. EVERY CONNECTION has a starting point. WorldCat Navigator - Authentication Library Hosted Navigator EZproxy and.

EVERY CONNECTION has a starting point. EVERY CONNECTION has a starting point. WorldCat Navigator - Authentication Library Hosted Navigator EZproxy and.
Presented by Brad Jacobson The Publisher on the Web Exploiting the new online sales channels.

Presented by Brad Jacobson The Publisher on the Web Exploiting the new online sales channels.
OhioNET EZProxy Service

OhioNET EZProxy Service
EIFL Thursday, December 15 th, 2011 Brook Schofield Project Development Officer Slide 1.

EIFL Thursday, December 15 th, 2011 Brook Schofield Project Development Officer Slide 1.
KYRGYZ LIBRARIES INFORMATION CONSORTIUM Experience of the Kyrgyz Libraries on Open Repositories Implementation on Open Repositories Implementation Safia.

KYRGYZ LIBRARIES INFORMATION CONSORTIUM Experience of the Kyrgyz Libraries on Open Repositories Implementation on Open Repositories Implementation Safia.
New Jersey Digital Video Initiative 1 A Collaborative Project Between &

New Jersey Digital Video Initiative 1 A Collaborative Project Between &
7th AMICAL Conference June 9-12, 2010 Budapest, Hungary ePortfolio in AUCA: first steps and first results.

7th AMICAL Conference June 9-12, 2010 Budapest, Hungary ePortfolio in AUCA: first steps and first results.
Access & Identity Management “An integrated set of policies, processes and systems that allow an enterprise to facilitate and control access to online.

Access & Identity Management “An integrated set of policies, processes and systems that allow an enterprise to facilitate and control access to online.
Remote User Authentication in Digital Libraries

Remote User Authentication in Digital Libraries
Managing Student Access. What will we cover Registration Options Student Uploads Login Options Alumni Access versus Student Access.

Managing Student Access. What will we cover Registration Options Student Uploads Login Options Alumni Access versus Student Access.
EVERY CONNECTION has a starting point. NetLibrary eAudiobooks An Overview for Washington State Libraries Nathan Downing Field Implementation Specialist.

EVERY CONNECTION has a starting point. NetLibrary eAudiobooks An Overview for Washington State Libraries Nathan Downing Field Implementation Specialist.
ELAG Trondheim 2004 1 Distributed Access Control - BIBSYS and the FEIDE solution Sigbjørn Holmslet, BIBSYS, Norway Ingrid Melve, UNINET, Norway.

ELAG Trondheim Distributed Access Control - BIBSYS and the FEIDE solution Sigbjørn Holmslet, BIBSYS, Norway Ingrid Melve, UNINET, Norway.
2006 © SWITCH Authentication and Authorization Infrastructures in e-Science (and the role of NRENs) Christoph Witzig SWITCH e-IRG, Helsinki, Oct 4, 2006.

2006 © SWITCH Authentication and Authorization Infrastructures in e-Science (and the role of NRENs) Christoph Witzig SWITCH e-IRG, Helsinki, Oct 4, 2006.
Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.

Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.
Understanding Active Directory

Understanding Active Directory

Similar presentations

Ads by Google