Sakai ID & Access Management

Slides:



Advertisements
Similar presentations
GT 4 Security Goals & Plans Sam Meder
Advertisements

Knowledge Services: A Mission Critical Function for IT and the Library IT Summit at Harvard June 23, 2011.
SP Business Suite Deployment Kick-off
Blogging at Memorial University Libraries The what, the why, the how, the who.
KC-ROLO Project Kidderminster College Repository Of Learning Objects Graham Mason & Ed Beddows.
Microsoft Learning Gateway for HE Rob Miles – Hull University, Lecturer Romola Ganguli – Microsoft Education Technology Advisor.
Leverage Blackboard Web Services
ELAG Trondheim Distributed Access Control - BIBSYS and the FEIDE solution Sigbjørn Holmslet, BIBSYS, Norway Ingrid Melve, UNINET, Norway.
Spark Web 2.0 Tools for Communication and Collaboration David Grogan Manager, Curricular Technology Group UIT Academic Technology Tufts University What.
Spark Web 2.0 Tools for Communication and Collaboration David Grogan Manager, Curricular Technology Group UIT Academic Technology Tufts University What.
Managing Identity and Permissions
Inside Microsoft Office SharePoint Server 2007 Jozef Kalivoda Solution Sales Professional Microsoft Slovakia.
A Community Discussion of Google Apps Macalester College _____________________________________________ Ted Fines & David Sisk 1April 22, 2010 Associate.
Prabath Siriwardena Senior Software Architect. An open source Identity & Entitlement management server.
IMS LIS 2.0 & Sakai Nate Angell, Sakai Product Manager, The rSmart Group, Inc. Duffy Gillman, Sr. Software Engineer, The rSmart Group, Inc. Alan Hanson,
AAI with simpleSAMLphp
SAKAI 3 MICHAEL KORCUSKA March 2009 Why Sakai 3?  Changing expectations  Google docs/apps, Social Networking, Web 2.0  Success of project sites =
Moodle: using an open learning management system to support student learning Keith Landa Purchase College
SAKAI February What is SAKAI? Sakai ≠ Course Management System Sakai = Collaboration & Learning Environment.
Integrating Applications with the Directory Andrea Beesing CIT/Integration and Delivery June 25, 2002.
March 19, Open Knowledge Initiative: The Saga Unfolds Mike Barker Lois Brooks Jeff Merriman.
SPS FPDS-NG Integration: System Administration April 20, 2006.
Eric Westfall – Indiana University Jeremy Hanson – Iowa State University Building Applications with the KNS.
Extending Vista The PowerLinks WebServices SDK John Hallett Senior Product Manager WebCT, Inc
Loosely Coupled Sakai Ray Davis University of California, Berkeley.
A Web Based Workorder Management System for California Schools.
Building Applications with the KNS. The History of the KNS KFS spent a large amount of development time up front, using the best talent from each of the.
MEDIU Learning for HE Ahmad Nimer | Project Manager.
© 2004, The Trustees of Indiana University Kuali Project Development Methodology, Architecture, and Standards James Thomas, Kuali Project Manager Brian.
CAS Lightning Talk Jasig-Sakai 2012 Tuesday June 12th 2012 Atlanta, GA Andrew Petro - Unicon, Inc.
These materials are prepared only for the students enrolled in the course Distributed Software Development (DSD) at the Department of Computer.
Empowering people-centric IT Unified device management Access and information protection Desktop Virtualization Hybrid Identity.
Stanford Authorization Existing mainframe based authority –homegrown, in operation since the 80’s –primarily for financial and personnel authority for.
Enterprise Integration in Sakai 2.4 An overview of what’s new and (hopefully) improved.
Information Technology Current Work in System Architecture January 2004 Tom Board Director, NUIT Information Systems Architecture.
8th Sakai Conference4-7 December 2007 Newport Beach Integration: Users and Groups Mark J. Norton Nolaria Consulting.
Running Kuali: A Technical Perspective Ailish Byrne (Indiana University) Jonathan Keller (University of California, Davis)
Module 6: Configuring User Environments Using Group Policies.
Kuali Identity Management: Introduction and Implementation Options Jasig - Spring 2010 Wednesday, March 10, :30 am.
LDS Account and the Java Stack. Disclaimer This is a training NOT a presentation. – Be prepared to learn and participate in labs Please ask questions.
Introduction to Terra Dotta Applications Integration with Campus Data Systems for institutions beginning their software implementation.
1 Name of Meeting Location Date - Change in Slide Master Authentication & Authorization Technologies for LSST Data Access Jim Basney
L’Oreal USA RSA Access Manager and Federated Identity Manager Kick-Off Meeting March 21 st, 2011.
Information Technology  © 2001 The Trustees of Boston College   Slide 1 Call to Action! Bernard W. Gleason JA-SIG uPortal Conference Vancouver, British.
19 Copyright © 2008, Oracle. All rights reserved. Security.
October 2014 HYBRIS ARCHITECTURE & TECHNOLOGY 01 OVERVIEW.
PARTNER UPDATE V9 MILESTONE 1 & 2.
SharePoint Authentication and Authorization
Given by: Rose Rocchio, OIT, UCLA Nick Thompson, OID, UCLA
Stop Those Prying Eyes Getting to Your Data
Containers as a Service with Docker to Extend an Open Platform
Essentials of UrbanCode Deploy v6.1 QQ147
#44/A, 3RD FLOOR, GEETHANJALI APARTMENTS, OPP. BAHAR CAFE
Overview Blogs and wikis are two Web 2.0 tools that allow users to publish content online Blogs function as online journals Wikis are collections of searchable,
Identity and Access Management Challenges in uPortal
John O’Keefe Director of Academic Technology & Network Services
Using Microsoft Identity Manger with SharePoint 2016 to fill the User Profile Sync Gap Max Fritz Senior Systems Consultant Now Micro.
Objectives Differentiate between the different editions of Windows Server 2003 Explain Windows Server 2003 network models and server roles Identify concepts.
CMPE419 Mobile Application Development
ESA Single Sign On (SSO) and Federated Identity Management
Office 365 & Partner Solution Lets Companies Collaborate and Learn on the Same Platform “Office 365 is proving to be the perfect platform to deliver and.
BlackBoard 5 A Definitive e-Learning Software Platform Ozgur Balsoy,
SAKAI February 2005.
Course: Module: Lesson # & Name Instructional Material 1 of 32 Lesson Delivery Mode: Lesson Duration: Document Name: 1. Professional Diploma in ERP Systems.
Implementation: Giving Users What They Want
April 06 Lab The ICG Toolkit
Shibboleth Deployment Overview
The Sakai Project and Partnership
INSTRUCTOR NOTES/LINKS
Links Launch Outlook Launch Skype Place Skype on Do Not Disturb.
Presentation transcript:

Sakai ID & Access Management Ray Davis University of California, Berkeley ACAMP ID Summit – June 2009

What’s an LMS? “Learning Management System” “Collaborative Learning Environment” = Collaborative web functionality + Central maintenance Higher education Three things never meant to go together.

What is Sakai? A framework A suite Java-based Open source Pluggable Open source = The product relies on distributed volunteer(ed) labor. Pluggable = Very decentralized. Must be not too hard to develop for, not too hard to deploy, and not so awful that users revolt.

How is Sakai? Sakai 2 Sakai 3 (WORK IN PROGRESS) Tomcat Spring Homegrown component / portal system Anything Java-ish Sakai 3 (WORK IN PROGRESS) Apache Sling (Scripting, JCR, OSGi) “Homegrown” = A nightmare to maintain. “Anything” = A nightmare to QA.

Federated Authentication : LMS Local accounts Kerberos LDAP CAS SAML OpenID The usual…

Federated Authentication : Sakai 2 One integration point Need to maintain custom code

Federated Authentication : Sakai 3 Configurable out-of-the-box support for common options? Use existing libraries?

Federated User Profile : LMS Merge with LDAP, etc. Context-specific settings Context-specific access * Context-specific settings : email filtering by class; role-playing pedagogy * Context-specific access : class instructors see more data than fellow students

Federated User Profile : Sakai 2 Two integration points Non-centralized profile services Need to maintain customized code Basic user data vs. “display name and ID”. EduPerson not in core.

Federated User Profile : Sakai 3 Core support for EduPerson? Out-of-the-box LDAP integration? Cross-application profile customization?

Federated Authorization : LMS Application-owned privileges Installation-specific role definitions Context-sensitive groups, roles, and permission mappings Externally-managed groups and roles LMS targets the same functional space as collaborative web apps, social networking, LAMP tools. Fast development + UX-feature driven + Widely distributed teams = Plug-in-defined permissions. * Installation-specific roles : "Head GSI" at Cal, "Supervisor" at Cambridge. "Privileges" as integration interface (does a "Head GSI" edit course assignments?) * Context-sensitive groups and roles : An instructor in one area, a student in another, a reviewer in a third. Permission mappings: A student might not be able to edit the blog in one course workspace, but have that duty in a different course workspace. * Refer to and merge from externally-managed groups and roles : official enrollments, teaching duties, staff positions. Tightest area of control (student privacy issues; final grades as financial transactions).

Federated Authorization : Sakai 2 Complex template-based system Plug-in-defined permissions, Installation-defined role types, Site memberships and groups, Institutional integration Customized code often needed Common administrative tasks unsupported Conflicts between course sections and site groups Common adminstrative tasks: Add or upgrade a plug-in. Add an installation role. Change an existing role’s permission mappings.

Federated Authorization : Sakai 3 Groups as first-class citizens? Better merging and reconciliation? Easier upgrades and fixes? Out-of-the-box integration with IMS LIS? With OpenSocial? With SAML attributes? With Google Apps Education?

Ideas? http://confluence.sakaiproject.org/confluence/ http://groups.google.com/group/sakai-kernel/ Ray Davis <ray@media.berkeley.edu>

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.