Presentation is loading. Please wait.

Presentation is loading. Please wait.

~60 staff 1.Collaborators around the world 2.Supports communities of collaborators external to Internet2 3.Community uses wiki, mailing lists, instant.

Published byAmanda Palmer Modified over 8 years ago

Similar presentations

Presentation on theme: "~60 staff 1.Collaborators around the world 2.Supports communities of collaborators external to Internet2 3.Community uses wiki, mailing lists, instant."— Presentation transcript:

1 ~60 staff 1.Collaborators around the world 2.Supports communities of collaborators external to Internet2 3.Community uses wiki, mailing lists, instant messaging, voice conferencing services 4.Doesn’t want to be in the identity issuance business for external collaborators 5.Need to allow external + internal collaborators to use same service instances A Short description of Internet2

2 A Middleware Unified Field Theory Identity Management / Directories Privileges / Groups Single Sign-On / Federation Diagnostics Enterprise Integration from network to application Michael R Gettes Internet2 October 2007 An interpretation of the original MACE mission

3 What do we want? Inter-Enterprise Workgroup Collaborations not sexy

4 or C ollaborative O rganizations CO

5 Identity Groups Privileges Federated Access

6 and … Applications “It’s the App stupid!”

7 Give COntrol To COmmunity Members

8 Integrate with Existing COmmon IT Infrastructures in Higher Education

9 Flexible Scalable Modular

10 COmponents S H I B B O L E T H LDAP-PC Signet Grouper LDAP Directory Identity Mgr Applications & Network COCO

11 stop talking start walking demo COmanage.internet2.edu

12 COmponents S H I B B O L E T H LDAP-PC Signet Grouper LDAP Directory Identity Mgr Applications & Network COCO

13 Comanage … is only a demonstration of the CO model a CO fits within a service delivery strategy

14 Application Management App Access to data is managed by LDAP (initially) Identity data can be distributed by any desired mechanism in the future. SQL databases, feeds, message bus technologies.

15 Truth be told… LDAP-PC Large-Scale Performance and namespaces SIGNET Minor UI and Deployment GROUPER Some UI and Large-scale Performance SIGNET only immediate concern

16 Many COs on a single server (if you wanna do that) Grouper/Signet/LDAP-PC Identity Mgr Grouper/Signet/LDAP-PC LDAP Application set

17 No local identity issued for external users to access CO services big win! O=University,c=US ou=People(this is where 50K fac/staff/stu might reside) ou=CO(external identities for CO go here) ou=Groups(a place to store groups for all) Example directory tree for CO environment Applications pointed here for identities yields the union of internal and external

18 Future… Begin addressing issues of “attribute eCOnomy” Protect CO by Identity Provider… can solve “IEEE problem”? Web site wants to know: Are you a member of IEEE? My University IEEE-CO This org has membership data but does not manage identity - a CO with only external users. User Home Identity Provider

19 Diagnostics Lifting up shib log files and making EDDY deposits Creating a unified and federated view of diag data Network data: flows, snort, snmp System stats: cpu, i/o, mem, etc… Infrastructure: shib, ldap, authN, etc… Application: http, confluence, sympa, calendar etc, etc, etc… http://web.cmu.edu/eddy

20 Network Layer? Why not? Integrate with Grids? Why not? Addresses VO scenarios? Why not?

21 V O VO? CO

22 Make your opinion known… Should Internet2 use COmanage for service delivery? Rick Summerhill rrsum@internet2.edu Cheryl Fremon cmfremon@internet2.edu and kjk@internet2.edu and gettes@internet2.edu

23 it’s all about /me done Talk amongst yourselves

Download ppt "~60 staff 1.Collaborators around the world 2.Supports communities of collaborators external to Internet2 3.Community uses wiki, mailing lists, instant."

Similar presentations

Central Desktop – why we love it and you will love it too. Alison Paul Deputy Director, Montana Legal Services Association Equal Justice Conference Minneapolis,

Central Desktop – why we love it and you will love it too. Alison Paul Deputy Director, Montana Legal Services Association Equal Justice Conference Minneapolis,
Welcome to Middleware Joseph Amrithraj

Welcome to Middleware Joseph Amrithraj
From Authentication to Privilege Management to the Attribute Economy: Marketing runs amok…

From Authentication to Privilege Management to the Attribute Economy: Marketing runs amok…
Federated Access to Grids Daniel Kouřil, Sam Hartman, Josh Hewlet, Jens Jensen, Michal Procházka EGI User Forum 2011.

Federated Access to Grids Daniel Kouřil, Sam Hartman, Josh Hewlet, Jens Jensen, Michal Procházka EGI User Forum 2011.
Internet2 Middleware BASE CAMP slides Michael R. Gettes Principal Technologist Georgetown University

Internet2 Middleware BASE CAMP slides Michael R. Gettes Principal Technologist Georgetown University
Drive-By Dialogues. Presenter’s Name Topics The Long Strange Trip of I2 – NLR Merger A Brief Comment on Optical Networking Middleware Developments Security.

Drive-By Dialogues. Presenter’s Name Topics The Long Strange Trip of I2 – NLR Merger A Brief Comment on Optical Networking Middleware Developments Security.
A Middleware Unified Field Theory Identity Management / Directories Privileges / Groups Single Sign-On / Federation Enterprise Integration from network.

A Middleware Unified Field Theory Identity Management / Directories Privileges / Groups Single Sign-On / Federation Enterprise Integration from network.
1 Issues in federated identity management Sandy Shaw EDINA IASSIST 24-27 May 2005, Edinburgh.

1 Issues in federated identity management Sandy Shaw EDINA IASSIST May 2005, Edinburgh.
Copyright B. Wilkinson, 2008. This material is the property of Professor Barry Wilkinson (UNC-Charlotte) and is for the sole and exclusive use of the students.

Copyright B. Wilkinson, This material is the property of Professor Barry Wilkinson (UNC-Charlotte) and is for the sole and exclusive use of the students.
Identity and Access Management IAM A Preview. 2 Goal To design and implement an identity and access management (IAM) middleware infrastructure that –

Identity and Access Management IAM A Preview. 2 Goal To design and implement an identity and access management (IAM) middleware infrastructure that –
1 Directory related work in the Global Grid Forum 3rd TF-LSD Meeting in Antalya 14.-17.5.2001 Peter Gietz

1 Directory related work in the Global Grid Forum 3rd TF-LSD Meeting in Antalya Peter Gietz
Rodney Neal Office 365 for Education Montgomery County Schools

Rodney Neal Office 365 for Education Montgomery County Schools
TUESDAY 24 APR 2012 COLLABORATION IS HAPPENING: UPDATES FROM THE FIELD AND BEYOND HEATHER FLANAGAN INTERNET2 HAROLD TEUNISSEN SURFNET.

TUESDAY 24 APR 2012 COLLABORATION IS HAPPENING: UPDATES FROM THE FIELD AND BEYOND HEATHER FLANAGAN INTERNET2 HAROLD TEUNISSEN SURFNET.
Widely Distributed Access Management Tom Barton University of Chicago.

Widely Distributed Access Management Tom Barton University of Chicago.
Presenter’s Name InCommon Approximately 80 members and growing steadily More than two million “users” Most of the major research institutions (MIT joining.

Presenter’s Name InCommon Approximately 80 members and growing steadily More than two million “users” Most of the major research institutions (MIT joining.
CAMP Med Mapping HIPAA to the Middleware Layer Sandra Senti Biological Sciences Division University of Chicago C opyright Sandra Senti,

CAMP Med Mapping HIPAA to the Middleware Layer Sandra Senti Biological Sciences Division University of Chicago C opyright Sandra Senti,
Understanding Active Directory

Understanding Active Directory
A centralized system.  Active Directory is Microsoft's trademarked directory service, an integral part of the Windows architecture. Like other directory.

A centralized system.  Active Directory is Microsoft's trademarked directory service, an integral part of the Windows architecture. Like other directory.
#CONVERGE2014 Session 1304 Managing Telecom Directories in a Distributed or Multi-Vendor Environment David Raanan Starfish Associates.

#CONVERGE2014 Session 1304 Managing Telecom Directories in a Distributed or Multi-Vendor Environment David Raanan Starfish Associates.
Matt Steele Senior Program Manager Microsoft Corporation SESSION CODE: SIA326.

Matt Steele Senior Program Manager Microsoft Corporation SESSION CODE: SIA326.

Similar presentations

Ads by Google