Shibboleth Tutorial Origins John Ball SUNY at Buffalo

Slides:



Advertisements
Similar presentations
Using Shibboleth as an SSO
Advertisements

Copyright © 2011 Pearson Education, Inc. or its affiliates. All rights reserved.1 PowerSchool 7.0 PowerSchool Application Architecture –PowerSchool 7.0.
“SharePoint Farm Deployment & Configuration. Recommendations” Michael Nemtsev, Readify Pty Microsoft MVP.
VOCAL System Requirements and Scalability. System Recommendations The recommended hardware system to support the VOCAL system is: 700 MHz, Pentium III.
Capacity Planning and Predicting Growth for Vista Amy Edwards, Ezra Freeloe and George Hernandez University System of Georgia 2007.
Virtualization and Server Growth in a SIS Shawn Geil, Washburn University.
Horizontal Scaling and Reliability Planning and Testing for Heavy Load Steven Goeke Bill Frikken.
Case Study: Newcastle University
December 9, 2002 UNICON / IBS: Adam Rybicki Michael Erdely Sun Microsystems: Jeff Weiss Testing and Proving uPortal’s Scalability at the Sun iForce Center.
Virtual Video Transcoding in the Cloud
Capacity Planning in SharePoint Capacity Planning Process of evaluating a technology … Deciding … Hardware … Variety of Ways Different Services.
Load Test Planning Especially with HP LoadRunner >>>>>>>>>>>>>>>>>>>>>>
Shibboleth: New Functionality in Version 1 Steve Carmody July 9, 2003 Steve Carmody July 9, 2003.
Terminal Services in Windows Server ® 2008 Infrastructure Planning and Design.
1 The Virtual Reality Virtualization both inside and outside of the cloud Mike Furgal Director – Managed Database Services BravePoint.
SSP Capacity Planning. One powerful machine with everything.
Module 13: Network Load Balancing Fundamentals. Server Availability and Scalability Overview Windows Network Load Balancing Configuring Windows Network.
INFM603 Project Presentation Jenny Wu Prachi Chhokar.
Napster Shibboleth Target PSU/Napster Technical Integration R. Ramos
Ladd Van Tol Senior Software Engineer Security on the Web Part One - Vulnerabilities.
3 Nov 2003 A. Vandenberg © Second NMI Integration Testbed Workshop on Experiences in Middleware Deployment, Anaheim, CA 1 Shibboleth Pilot Local Authentication.
WhatsUp Gold v15 – WhatsUp Companion 3.7 WhatsUp Companion Extended
Web Performance Inc - Web Performance Trainer TM - Edition : March Web Performance Trainer TM.
Projects. High Performance Computing Projects Design and implement an HPC cluster with one master node and two compute nodes. (Hint: use Rocks HPC Cluster.
Shibboleth IdP Training: Productionalization January, 2009.
Web Infrastructure Team Our Services and our Hardware Owen Le Blanc.
TNC 2008 JANET(UK) Shibboleth on Windows Trial TNC May 2008 Louis Searchwell Please note that the Shibboleth installer for Windows described in this presentation.
Presentation To. Mission Think Dynamics is in the business of automating the management of data center resources thereby enabling senior IT executives.
Sakai/OSP Portfolio UvA Bas Toeter Universiteit van Amsterdam
Indiana University’s Name for its Sakai Implementation Oncourse CL (Collaborative Learning) Active Users = 112,341 Sites.
Introduction to ColdFusion Yu Fu 2003 MEC Candidate.
CAEN Wireless Network College of Engineering University of Michigan October 16, 2003 Dan Maletta.
Jefferson Lab Site Report Kelvin Edwards Thomas Jefferson National Accelerator Facility Newport News, Virginia USA
Shibboleth for Real Dave Kennedy
Shibboleth for Local Attribute Delivery 21 June 2007.
Shibboleth: Installation and Deployment Scott Cantor July 29, 2002 Scott Cantor July 29, 2002.
Technical Topics for Deployed Campuses: Web SSO Will Norris University of Southern California.
Web Database Programming Week 7 Session Management & Authentication.
Shibboleth Tutorial Targets John Ball SUNY at Buffalo
Shibboleth Penn State Case Study Renée Shuey Senior Systems Engineer ITS – Emerging Technologies October 13, 2003.
1 Admission Control and Request Scheduling in E-Commerce Web Sites Sameh Elnikety, EPFL Erich Nahum, IBM Watson John Tracey, IBM Watson Willy Zwaenepoel,
Shibboleth: OSU Early Adoption Scenarios Scott Cantor April 10, 2003 Scott Cantor April 10, 2003.
12-Jun NSI Registry Engineering & Operations Update Ari Balogh VP of Engineering
Module 3 Planning for Active Directory®
Continuous Integration CruiseControl.Net. Best Practices Use version control; Automate the build; Build should be self tested; Developers must commit.
Improving Shibboleth Origin Performance Walter Hoehn Internet2 Spring Member Meeting 2004.
Build and Deployment Process Understand NCI’s DevOps and continuous integration requirements Understand NCI’s build and distribution requirements.
Oracle’s Hyperion Planning Architecture Browser/Office Client Windows* / UNIX / Linux Server Web Data EntryMS Office IntegrationReporting and Analysis.
WebISO, Single Sign-On & Authorization General Overview Shelley Henderson Project Manager, Grid Software USC Information Services Copyright.
Module 1: Designing IIS Web Farms Changes in a Nutshell shell-shared-hosting-improvements-on-iis7.aspx.
BlueDragon Editions and Advantages Lori Pacheco New Atlanta.
Cofax Scalability Document Version Scaling Cofax in General The scalability of Cofax is directly related to the system software, hardware and network.
1 Deployment Frameworks for Web Applications John Paul Ashenfelter CTO/Transitionpoint.
Planning for Appx 4.3.  You will need the following minimum O/S levels to run 4.3: IBM RS/6000: 5.2 or newer IBM RS/6000: 5.2 or newer HP 9000 & Itanium:
Wataru Takase, Tomoaki Nakamura, Yoshiyuki Watase, Takashi Sasaki
Unix Server Consolidation
Virtual Video Transcoding in the Cloud
Cultivating Software Quality In Cloud Via Load Testing Tools
CAS and Web Single Sign-on at UConn
”The Ball” Radical Cloud Resource Consolidation
Measure Web Performance
Life After Implementation: Ensuring 24 x 7 Availability
My Research Experiences on Computer Performance Optimization
Moodle Scalability What is Scalability?
Admission Control and Request Scheduling in E-Commerce Web Sites
Shibboleth Today and Tomorrow Over the last year, Shibboleth, the inter-institutional authorization system, has progressed from advanced testing to widespread.
Shibboleth Deployment Overview
Earthquake Early Warning – Testing and Certification Platform
Work Plan For 6LoWPAN Platform
Presentation transcript:

Shibboleth Tutorial Origins John Ball SUNY at Buffalo

Origin Deployment  UB Shibboleth deployment  Performance  Infrastructure  Origin plans  WebISO?  SSL  Hardware/OS  Testing  Other issues

UB Shib Deployment  Deploying in a load balanced/HA scenario  Virtualized services Both Auth and Web application farm  4 Geographic locations  Initially internal application use

Performance  Benchmarked current peaks DCE on Solaris Apache Web servers  Peaks for our busiest web service ~5500 unique “auths” per hour or 92 per minute  Originally estimated peak Shib capacity to be 1.84 auths per second with WebISO (Cosign) and Java encryption

Performance  Other considerations: Auth session length Commitment to less than 5 seconds Goal of 1-2 seconds maximum

Original Plans  Originally using 4 Sun V120s  Originally using Java for SSL  Originally using Shib with Cosign

WebISO?  Removed Cosign from our plans for now  Using Tomcat load balancing  This has an impact on our original HA plans  Can we save Tomcat session state?

SSL  Now using native JCE SSL  Significant performance gains

Hardware  UB Historically a Sun shop  Started with 4 Sun V120s  Moved to 4 Sun 280Rs Dual CPU Sun Crypto Accelerator cards  Performance still CPU bound  Moved to Linux on 2 “borrowed” Dell 6650s (used the 280s for our LDAP)

Hardware/OS  Recently purchased 12 Dell 1750s Dual Xeon 3.2G CPUs  The more CPUs the better  Plans to deploy 2 Dells per location for production

Testing/Tweaking  Testing load using Webload and JMeter  Tweaking and testing Capacity Session times

Other issues  Still working on a “500” page error about every 500 auths –Tomcat issue? This may be fixed in a newer version of Tomcat This has been seen at other locations  Cisco CSS configuration  Kerberos plug-in for LDAP bug

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.