1 / 25

Agenda

Agenda. Project beginnings and funding. Purpose of the federation. Federation members. Federation protocols. Special features in our federation. Pilot project Inter-federation prospects. Question. Q : How do you enable access to your services for users registered at other institutions ?

thaddeus-patton
Download Presentation

Agenda

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Agenda • Project beginnings and funding. • Purpose of the federation. • Federation members. • Federation protocols. • Special features in our federation. • Pilot project • Inter-federation prospects

  2. Question • Q: How do you enable access to your services for users registered at other institutions ? • A: Central directory of users • B: Issue accounts for remote user • C: OpenID • D: Federated Access

  3. Question • Q: What is federated access? • A: A way to authenticate users without having to know the users username/password • B: A way to authenticate yourself using the same credentials you use at your institution. • C: A way to authorize users based on their role at the remote institution... • ... or based on your own rules..

  4. UK Access Management Federation • http://video.google.co.uk/videoplay?docid=6664146721575915928

  5. Project beginnings and funding • Forfás report -short term infrastructure • National Development Plan (PRTLI)‏ • Application for SIF-II funding of mini-grants for IdP's and SP's approved (but paused)‏ • Other revenue streams under consideration.

  6. Federation Purpose • Initially... • Foster cross institutional collaboration • Now... • Enable shared services (e.g. NDLR)‏ • Enable SaaS (e.g. Google Apps)‏ • Supplement GRID/HPC • Validate student identity (e-commerce)‏ • Potential alternative to Athens AM

  7. Federation Members • IdP's • Any entity within Ireland with a student body • SP's... • Any entity providing services to institutions • Any entity providing services to students

  8. Notable Members • IdP's • Open to primary/second level schools (single IdP)‏ • SP's... • Commercial entities offering a 'student discount' • GRID to supplement existing authorisation

  9. Potential Members • SP's... • Institutional libraries • Elsvier, EBSCO, Thomson Reuters • Any member of the UK Federation • National Library • National Digital Learning Repository • Exptertise Ireland • IReL

  10. Potential Members • IdP's... • Universities • Institutes of Technology • Schools • Research agencies (ESRI, EPA etc.)‏ • Athens AM (or similar)‏

  11. Federation Protocol • Initially... • SAML1/SAML2/ADFS/Shibboleth 1.3 and 2.0 • Now • SAML2 with specific binding/protocol • Interoperability between SAML implementations... • ...allowing commercial SAML products... • ...alongside open-source

  12. Options for IdP's • Self-managed IdP • No fee (for HEA funded institutions)‏ • Small fee (for non HEA-funded)‏ • Managed or Hosted IdP. • Additional fee • Shibboleth 2.1

  13. Options for SP's • Self-managed SP • No fee for HEA funded institutions • Membership fee for non HEA-funded • Managed or Hosted SP. • Additional fee • Shibboleth 2.1 and simpleSAMLphp

  14. Special features • Collaboration and access to resources • Federation established for cross-institutional access to protected content • Virtual Learning Environments • Digital Libraries • Centralised, pooled, or shared services • Intra-library loans

  15. Special features • Shibboleth web-based administration • Config. can be difficult for those new to Shibb. • Web-based interface is designed to make configuration easier. • Wizard outputs downloadable configuration files • The wizards are based on SWITCH RR*

  16. Special features • IdP default release policy...

  17. Special features • View SP attribute requirement policy.

  18. Pilot Project • Call for participation. • Response from GRID and one institution • Workshops. • Another call for participation; • Response from small group of IdP and SP's including HPC. • Technical trial commenced

  19. Pilot Project • Pilot project will continue in parallel to; • Call to libraries • Further workshops • Additional pilot participants

  20. Pilot Project • Expected Outcomes; • Technical • Agreed Attribute Schema • Agreed Protocol • Policy • Agreed Rules of Membership • Agreed Membership criteria • Agreed model to steer the federation in the future • Agreed production launch date.

  21. Inter-federation • Bilaterally • Attribute schema based on UK Federation Schema to ease bilateral federation. • UK Federation will be ready for SAML2 in the future

  22. Inter-federation • Multilaterally. • As number of Bilateral agreements grow an inter-federation agreement will emerge. • Technical solution may be based on SAML2 metadata mergers where possible • eduGAIN where not possible

  23. Summary • Project beginnings and funding. • Purpose of the federation. • Federation members. • Federation protocols. • Special features • Pilot project • Inter-federation prospects • Some final words...

  24. Final words... • IP Address rules can not be relied upon. • Use SAML for allow access to your content and services for users on or off your campus. • 'Must support federated access' in your tenders. • Do you have resources of interest to the wider academic community. • Thank You • www.edugate.ie

More Related