New York regional information centers

Slides:



Advertisements
Similar presentations
Connected Health Framework
Advertisements

Identity Network Ideals – Heterogeneity & Co-existence
Authentication solutions for Outlook and Office 365 Multi-factor authentication for Office 365 Outlook client futures.
Delivering Mission Agility Through Agile SOA Governance 13 th SOA e-Government Conference 4/12/2012 Presented by Wolf Tombe Chief Technology Officer (CTO)
DRAGOLJUB NESIC 08/12/2013 DOES IDENTITY MANAGENT REALLY HAVE TO BE DIFFICULT?
Confidential FullArmor Corp Platform for SaaS and mobile apps to remotely access, migrate, and sync Active Directory resources with the cloud ADanywhere.
SaaS, PaaS & TaaS By: Raza Usmani
SPRING 2011 CLOUD COMPUTING Cloud Computing San José State University Computer Architecture (CS 147) Professor Sin-Min Lee Presentation by Vladimir Serdyukov.
Matt Steele Senior Program Manager Microsoft Corporation SESSION CODE: SIA326.
3 Cloud Computing.
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
The Cloud Identity Security Leader. © 2012 Ping Identity Corporation Nair the twain shall meet Enterprise Social Mobile.
The powerful capabilities of JBoss Middleware as cloud based services on OpenShift. Build applications. Integrate with other systems Orchestrate using.
Identity Management in Education. Welcome Scott Johnson, NetProf, Inc. Creator of OmnID Identity Management for Education
M i SMob i S Mob i Store - Mobile i nternet File Storage Platform Chetna Kaur.
Microsoft Visual Studio 2010 Muhammad Zubair MS (FAST-NU) Experience: 5+ Years Contact:- Cell#:
Microsoft and Community Tour 2011 – Infrastrutture in evoluzione Community Tour 2011 Infrastrutture in evoluzione.
Microsoft Visual Studio 2010 Muhammad Zubair MS (FAST-NU) Experience: 5+ Years Contact:- Cell#:
Integrated Financial Applications using Intuit’s PaaS Solution George Chiramattel, Intuit.
2009 Federal IT Summit Cloud Computing Breakout October 28, 2009.
Authority of Information Technology Application National Center of Digital Signature Authentication Ninh Binh, June 25, 2010.
All Rights Reserved 2014 © CMG Consulting LLC Federated Identity Management and Access Andres Carvallo Dwight Moore CMG Consulting, LLC October
WSO2 Identity Server 4.0 Fall WSO2 Carbon Enterprise Middleware Platform 2.
Introduction to Avaya’s SDN Architecture February 2015.
RIC One API Deployment Overview Albany, NY February 2016.
Bluemix for Domino Developers Niklas Heidloff, heidloff.net.
Short Customer Presentation September The Company  Storgrid delivers a secure software platform for creating secure file sync and sharing solutions.
ADFS - Does it Still have a Place? Fitting into the EMS puzzle Frank C. Drewes III 2016 Redmond Summit | Identity.
Clouding with Microsoft Azure
Today’s challenges Data Users Apps Devices
Web SSO with Cloud Resources using AD Federation Services
The Holmes Platform and Applications
A4L – Australia Success Stories
Access Policy - Federation March 23, 2016
GEOSS Federated Single Sign-On
562: Power of Single Sign-On in OpenEdge
Stop Those Prying Eyes Getting to Your Data
By: Raza Usmani SaaS, PaaS & TaaS By: Raza Usmani
Experiences to Date Faculty of Engineering April 2017
Jason Bury Dylan Drake Rush Corey Watt
Attacking the Daily Monster…
International Activities
Data and Applications Security Developments and Directions
More time learning. Less time logging in.
SaaS Application Deep Dive
Prime Service Catalog 12.0 SAML 2.0 Single Sign-On Support
IBM Start Now Host Integration Solutions
Cloud Computing.
ESA Single Sign On (SSO) and Federated Identity Management
Protect your OneDrive and SharePoint files on mobile devices
Blockchain technology at Change Healthcare
Dataporten Andreas Åkre Solberg
3 Cloud Computing.
“Software like Microsoft Office 365 is the backbone of the enterprise
Office 365 Identity Management
Abiquo’s Hybrid Cloud Management Solution Helps Enterprises Maximise the Full Potential of the Microsoft Azure Platform MICROSOFT AZURE ISV PROFILE: ABIQUO.
Mobile Services and Cloud Scalability Enable Connections Between Brands and Customers MINI-CASE STUDY “It became clear that Microsoft Azure was the way.
Cloud computing Technology: innovation. Points  Cloud Computing and Social Network Sites have become major trends not only in business but also in various.
Cloud computing Technology: innovation. Points  Cloud Computing and Social Network Sites have become major trends not only in business but also in various.
Web services introduction, application and its future
SPO Demos to Business Value Discussion Pillar Mapping
Community AAI with Check-In
TechEd /6/ :24 PM © 2013 Microsoft Corporation. All rights reserved. Microsoft, Windows, and other product names are or may be registered trademarks.
Microsoft Virtual Academy
Successful Implementation of Identity Management Systems Integration
Productive + Hybrid + Intelligent + Trusted
Microsoft Virtual Academy
worlds largest IT service provider
Presentation transcript:

New York regional information centers Jump Start! xPress roster via sif 2 New York regional information centers RIC One project Jason Wrage © Access 4 Learning (A4L) Community

Standard Utilization © Access 4 Learning (A4L) Community

© Access 4 Learning (A4L) Community

Concerns over privacy and security lead to the demise of inBloom The Challenge “Every new beginning comes from some other beginning’s end.” Seneca (or Semisonic?) Concerns over privacy and security lead to the demise of inBloom © Access 4 Learning (A4L) Community

The 700+ districts in New York state still needed solutions for data interoperability & SSO… © Access 4 Learning (A4L) Community

Reliably and consistently obtaining data from (6) different student systems © Access 4 Learning (A4L) Community

Maximizing adoption potential to provide students and teachers with lots of choices © Access 4 Learning (A4L) Community

The Solution Enter: API and LOGIN Entrust the regional service centers already providing data and networking services to districts with building a better mousetrap Business requirements related to privacy and security largely drove the defining architectural characteristics Emphasis is on local & regional control Regional data hubs Federated single sign on © Access 4 Learning (A4L) Community

The Solution What’s the best way to securely provide rostering data to educational apps? A modern, open, RESTful web service API Building on SIF 3, we developed xPress Roster Our implementation is known as RIC One API What’s the best way to provide Single Sign On, while maintaining local control and security best practices? Federated identity Our implementation is known as RIC One LOGIN © Access 4 Learning (A4L) Community

“Better together” but “independently adoptable” The Solution RIC One API ingests data from SISs using SIF2 offers roster data to client apps via the xPress Roster API RIC One LOGIN connects to district, regional or cloud directories (IdPs) via LDAPS Offers SSO services to service providers using SAML 2, WS-Federation and OpenID Connect (future) “Better together” but “independently adoptable” © Access 4 Learning (A4L) Community

The Standards RIC One API Function Standard Description Data ingestion SIF 2 Near-universal support by source systems (SISs), reliability and real time were the main benefits to using SIF2 to get data. Data storage CEDS We created a “light” schema to support rostering based on CEDS DES. This enables us to be agnostic for ingestion and API output. API xPress Roster /SIF 3 We based xPress roster on both CEDS and SIF3. It is designed for simplicity and ease of use by developers of client apps. Code sets Since SIF 3 does not provide a standard set of codes, we decided that the option sets in CEDS were the best way to go. © Access 4 Learning (A4L) Community

The Standards RIC One LOGIN Function Standard Description Directory access LDAPS Near-universal support by source systems (SISs), reliability and real time were the main benefits to using SIF2 to get data. SSO SAML 2 The current de facto standard for enterprise, web-enabled SSO. WS-Federation An older standard required for Office 365 support. OpenID Connect Positioned to become the new standard of choice for SSO. Better support for mobile. © Access 4 Learning (A4L) Community

RIC One Integrated System Architecture Nuts & Bolts DPA (x12) Config Service Auth Service District SISs Other Data Sources District Directories Identity Federation Provisioning Auth-Time Client Client App/SP SAML Client API Client LOGIN Components API Components Central Services RIC One Integrated System Architecture © Access 4 Learning (A4L) Community

Nuts & Bolts These solutions are based almost exclusively on Open standards: xPress Roster SIF 3 SIF NA 2.x CEDS Open source: NSIP’s SIF 2 and SIF 3 frameworks ForgeRock’s identity platform Linux, Docker, MySQL/MariaDB, Node.JS, Loopback © Access 4 Learning (A4L) Community

Meeting Stakeholder Needs Districts Enabling streamlined, equitable access to apps Heightened awareness of privacy and security Eliminates the burden of manual processes RICs Collaboration across regions Reduction in labor required to build and maintain traditional extract methods across multiple SISs Vendors A single API for roster data Easy to implement (we even provide client libraries) © Access 4 Learning (A4L) Community

Related Sessions Open Source, later today xPress Next, Wednesday xPress Attendance, Thursday Thank you! For more information www.ricone.org jason.wrage@ovrtr.com © Access 4 Learning (A4L) Community

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.