1 / 24

Access & Identity Management

Access & Identity Management. “An integrated set of policies, processes and systems that allow an enterprise to facilitate and control access to online resources for their users” RSA Security No magic bullet Not about technology itself. Local web resources. External web resources.

maryi
Download Presentation

Access & Identity Management

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript


  1. Access & Identity Management • “An integrated set of policies, processes and systems that allow an enterprise to facilitate and control access to online resources for their users” RSA Security • No magic bullet • Not about technology itself

  2. Local web resources External web resources Local authentication System usernames & passwords Database Portal SSO VLE User attributes Names, email, role Journals OPAC Directory Organisational Single sign-on – the future Authentication transfer protocol e.g SAML, Shibboleth, AthensDA • Single copy of data managed centrally • accurate & reliable & secure • Users become accountable & auditable

  3. Beyond IP authentication: Identity Providers Service Providers Institutional Directory Federation AthensDA Shib SAML Athens Resources Athens agents Registry Institutional Data source Bulk Upload Proxies IP Resources Self registration • Individual recognition from day one • Patron attribution • Comprehensive statistics • 300 premium content vendors • user management tools designed for librarians

  4. Cookie Long Term Token Session token Cookie Athens First Access 7 1 2 HTTP refer for authentication 3 Athens Agent Athens Authentication Point Resource Session token User signs on with Athens or local authentication 8 4 5 6 Long Term Token 9 Session Token Create SSO session Athens Authority Server Check session token. Get attributes. Athens Single Sign-on

  5. Millions of usersWorldwide

  6. 2000+ institutions

  7. Single Sign-on(SSO)

  8. IdentityManagement

  9. User Provisioning

  10. ManagementInformation- usage statistics- audit

  11. Integrates with- Shibboleth - EZproxy - Active Directory - etc

  12. StandardsPoliciesAttributesEduPerson

  13. Case Study 1

  14. Individual Patron id’s – usable anywhere • using the student no as patron id • Uploaded automatically from student registry • No personal data to allay privacy concerns • Staff registered manually • Next step • Integration with Campus Directory

  15. Tamera Hanken says • I chose this service because I needed something that would be reliable, easy and quick to implement, and cost effective in terms of equipment and my time. • With this method we had to do nothing to enable our network system to use Athens.  • Based on how easy it was to begin using, how reliable it is, students didn’t find it cumbersome or confusing—we decided to purchase • Customer service has been friendly and prompt

  16. Case Study 2

  17. Tailored self registration • Library promotes URL of self registration form • Organisational defined info • Campus, role, faculty – whatever • Request validated by librarian or IP address • Statistics by any defined category • Account usable anywhere

More Related