1 / 12

Introduction to Grouper Part 1: Access Management & Grouper

Introduction to Grouper Part 1: Access Management & Grouper. Tom Barton University of Chicago and Internet2 Manager – Grouper Project. Why have an access management strategy?. Physics 101 Course Group. Email Group. Wiki Access. Lab Reservations.

honey
Download Presentation

Introduction to Grouper Part 1: Access Management & Grouper

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Introduction to GrouperPart 1: Access Management & Grouper Tom Barton University of Chicago and Internet2 Manager – Grouper Project

  2. Why have an access management strategy? Physics 101Course Group Email Group Wiki Access Lab Reservations Lower cost and time to deliver a new service Simplify and make consistent by using the same group or role in many places Grouper Training

  3. Additional benefits of access management Empower the right people to manage access. Take central IT out of the loop. See who can access what, with a report rather than a fire drill Grouper Training

  4. Access management stages:authorization > authentication Affiliation Service student Staff portal faculty staff guest Start out using a single user attribute, affiliation, in LDAP or Active Directory.This lets services implement simple access policies. Grouper Training

  5. Access management stages:authorization > authentication MathFaculty Group Math Faculty Resources can access • Enrich & centralize access management with groups determined from systems of record • Courses, financial accounts, departments • Define service-specific access policies in the centralized access management system Grouper Training

  6. Access management stages:authorization > authentication MathFaculty Group MathSupport Group Math Faculty Resources can access + 3. Get central IT out of the loop • Distributed management • Exceptions • Departmental applications Grouper Training

  7. Access management stages:authorization > authentication For Math Department, while John works there HR Admin Role • Increase integration of access management • Direct integration with applications using web services • SOAP/REST/ESB • Roles & privileges to support applications more deeply Grouper Training

  8. The Grouper Story • Open source, community-driven project of the Internet2 Middleware Initiative • Initial release v0.5 in December 2004 Grouper Training

  9. The Grouper Story Existing IdM Infrastructure • Key aims • Delegation and distributed management • Integration with most any existing Identity Management infrastructure Grouper Training

  10. The Grouper Story HR-Admin • If removed from group A • then • remove from group B • Grouper v2.X expanded beyond groups • Roles & permissions • Rules Grouper Training

  11. Thanks! Further information: Infosheets, mail lists, wiki, downloads, etc: www.internet2.edu/grouper Grouper demo server: https://grouperdemo.internet2.edu/

  12. Next Video in Grouper Online Training is: Introduction to GrouperPart 2: Grouper’s Core Access Management Capabilities Click on title above, or go to Grouper Online Training Home at <URL>

More Related