Supporting Services for Campus Identity Providers Plans

Slides:

Advertisements

Similar presentations

DMTF Cloud Standards Cloud Management & OVF Update to ITU-T SG13.

Advertisements

1 Software & Grid Middleware for Tier 2 Centers Rob Gardner Indiana University DOE/NSF Review of U.S. ATLAS and CMS Computing Projects Brookhaven National.

UMT and Microsoft Presenting Tips and Tricks Basics What’s new in Microsoft Project 2010 Brian Feder, MBA, PMP Senior Vice President UMT Consulting Group.

CTS Private Cloud Status Quarterly Customer Meeting October 22, 2014.

Cancún - Mexico, Andrea Biancini Towards a Federation as a Service From IdP in the Cloud project to FaaS.

AAF Middleware update February Presented by Terry Smith Technical Manager and Heath Marks Manager.

LCG Milestones for Deployment, Fabric, & Grid Technology Ian Bird LCG Deployment Area Manager PEB 3-Dec-2002.

System Center 2012 Certification and Training May 2012.

Harris Schneiderman Account Manager Kloud Solutions.

An Introduction to Progress Arcade ™ June 12, 2013 Rob Straight Senior Manager, OpenEdge Product Management.

EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks General relationships with EGEE JRA1 SA3.

EGEE-III INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Operations Automation Team James Casey EGEE’08.

JRA Execution Plan 13 January JRA1 Execution Plan Frédéric Hemmer EGEE Middleware Manager EGEE is proposed as a project funded by the European.

EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks IPv6 test methodology Mathieu Goutelle (CNRS.

EGEE-III INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks SA1: Grid Operations Maite Barroso (CERN)

Authentication and Authorisation for Research and Collaboration Peter Solagna Milano, AARC General meeting Report and plans Attribute.

Recipes for Success with Big Data using FutureGrid Cloudmesh SDSC Exhibit Booth New Orleans Convention Center November Geoffrey Fox, Gregor von.

CoprHD and OpenStack Ideas for future.

Connect. Communicate. Collaborate Deploying Authorization Mechanisms for Federated Services in the eduroam architecture (DAMe)* Antonio F. Gómez-Skarmeta.

INFSO-RI Enabling Grids for E-sciencE NRENs & Grids Workshop Relations between EGEE & NRENs Mathieu Goutelle (CNRS UREC) EGEE-SA2.

Javier Orellana JRA4 Coordinator Face to Face Partners Meeting University College London 11 December 2003 EGEE is proposed as a project funded by the European.

EGEE is a project funded by the European Union under contract IST JRA4 Overview Javier Orellana JRA4 Coordinator EGEE Kick Off Meeting SA2.

INDIGO – DataCloud WP5 introduction INFN-Bari CYFRONET RIA

Grid as a Service. Agenda Targets Overview and awareness of the obtained material which determines the needs for defining Grid as a service and suggest.

1 Open Science Grid: Project Statement & Vision Transform compute and data intensive science through a cross- domain self-managed national distributed.

Cloud Installation & Configuration Management. Outline  Definitions  Tools, “Comparison”  References.

EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI EGI Network Support Workshop Mario Reale / IGI - GARR EGI Network Support.

EGEE-III INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks The Dashboard for Operations Cyril L’Orphelin.

INDIGO – DataCloud CERN CERN RIA

EGI-InSPIRE EGI-InSPIRE RI Network Troubleshooting and PerfSONAR-Lite_TSS Mario Reale GARR.

Grid as a Service. Agenda Targets Overview and awareness of the obtained material which determines the needs for defining Grid as a service and suggest.

EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI EGI IPv6 Report for HEPiX CERN October 5, 2012 CERN 1

Open Source Summit May 8, 2017.

READ ME FIRST Use this template to create your Partner datasheet for Azure Stack Foundation. The intent is that this document can be saved to PDF and provided.

Bob Jones EGEE Technical Director

WLCG Update Hannah Short, CERN Computer Security.

Project Facts Partners: DANTE (UK), GARR (IT), RedCLARA (UY), RedIRIS (ES), RENATA (CO), RNP (BR), TERENA (NL) Coordinator: RedCLARA Project Duration:

Smart Cities and Communities and Social Innovation

By: Raza Usmani SaaS, PaaS & TaaS By: Raza Usmani

Regional Operations Centres Core infrastructure Centres

Campus IdP Status and plans GARR Mario Reale

Smart Cities and Communities and Social Innovation

Openlab Compute Provisioning Topics Tim Bell 1st March 2017

Wrap up Licia Florio AARC Coordinator

INFN National Institute for Nuclear Physics

Ian Bird GDB Meeting CERN 9 September 2003

StratusLab Final Periodic Review

StratusLab Final Periodic Review

Hannelore Hammerle NA2 F2F meeting, Manchester 8 May 2007

Bridges and Clouds Sergiu Sanielevici, PSC Director of User Support for Scientific Applications October 12, 2017 © 2017 Pittsburgh Supercomputing Center.

Revamping IdP in the Cloud pilot activities

Robert Szuman – Poznań Supercomputing and Networking Center, Poland

GÉANT 4-2 JRA3 T1 Something with Federations and Campus VC

Maite Barroso, SA1 activity leader CERN 27th January 2009

Input on Sustainability

Campus Bridging at XSEDE

Thursday pilot session: 7-minutes

Pilots in AARC Arnout Terpstra (AARC2) / Paul van Dijk (AARC1)

Microsoft Virtual Academy

Operations sustainability

SharePoint 2019 Overview and Use SPFx Extensions

Supporting Institutions Towards a Shibbolized Infrastructure

Configuration management suite

Steering Committee June 8th, 2016

Cloud Management & OVF Update to ITU-T SG13

Red Sky Update “Watching the horizon for emerging health threats”

OpenStack Summit Berlin – November 14, 2018

SCCM in hybrid world Predrag Jelesijević Microsoft 7/6/ :17 AM

Building a minimum viable Security Operations Centre

Open Infrastructure: Integrating OpenStack and Kubernetes

Presentation transcript:

Supporting Services for Campus Identity Providers Plans Task JRA3 Task1 Subtask 3 Supporting Services for Campus Identity Providers Plans Mario Reale GARR JRA3 Kick Off Meeting Zurich 12-13 July 2016

A couple of words about me Physicist by education, working in computing (web, grid, cloud) since 1997 @ Industry, INFN, CERN, GARR Involved in DataGrid, EGEE I-II-III, EGI Network support task Started at GARR in 2006 working on IPv6-compliance of Grid Midlleware; then some EU-Med, EU- China collaboration projects on Grid Started with Cloud computing in 2011 (GARRbox sync & share solution) Started working on Identity Federation in 2012 with the ELCIRA (EU-LA) project – Federated services and interoperable solutions Task lead in AARC SA1 since May 2015 ( Pilots on Guest Identities) Synergies with AARC Institutional activities @ GARR: mostly OpenStack for providing cloud services (started 2014) Currently started working on GARR Cloud platform integration with IDEM/SAML Support to the IDEM services provided by the infrastructure (Cloud IDP)

What are we supposed to deliver ? Based on findings from AARC, TIER (Internet2) and NREN developments, develop a campus IdP extension to the FaaS service for sites and regions who currently do not have the ability to support or offer a cloud IdP-type of service to campuses. Essentially : integrate current Federation-as-a-Service solution with Cloud based IDP Reference products: Jagger Other FaaS components: HSM, DS, MDA Cloud IDP GARR is offering Cloud IDP to some customers (health domain) based on automated Puppet solution

And when ? Timeplan 1.3 Supporting Services for Campus Identity Providers 1.3.1 Design Phase M1-M6 Mario D9.1 Market Analysis for Supporting Services for Campus Identity Providers EC Del M8 Include info on TIER Create CBA or update FaaS CBA M6 CBA Approval Technical Design M6-M12 Mario & Janusz Prototype M18-M20 1.3.2 Pilot M20-M28 1.3.3 Transition to Production M30

Current status of GARR Cloud IDP Marco Malavolti has recently ported our Cloud IDPs to Shibboleth IDP 3.2.1 Major changes in the recipes ( thick upgrade) GARR is currently hosting 15 instances on its GARR Progress infrastructure (5 sites in southern Italy – namely Palermo for Cloud IDP) Openstack Juno release - VLAN networking (net overlay mechanism) We offer an integrated solution including LDAPadmin interface for customers statistics reporting monitored with NAGIOS + additional home-made scripts

Next required steps Get all available information and documents about the current stand of the FaaS activities Outcome within GN4-1 Current level of maturity Get latest information about Jagger – F2F or VConf with Janusz Ulanowski Counting also on internal GARR support on Jagger (Marco, Barbara @ IDEM ) Perform a Market Analysis of all hosted, cloud-based IDP solutions currently provided at the EU scale Define the ToC here in Zurich Include Cost-Benefits Analysis – Get it approved Design integrated solution once decided on IDP A lot of input required from others with experience on FaaS – please 

Roadmap Hands on the current FaaS product : status ( including implementation tech, packaging, features) Market analysis of Cloud –based IDP solutions EU-wide Include assessment of US-based solutions (eg. TIER) Pick at least one starting option for delivering IDP based on results of survey/market analysis Design integrated solution spanning all layers of cloud stack – involving automation Bare metal provisioning capable solutions (?) Installation Configuration Start services and initial smoke tests Implementation phase for the FaaS+IDP integrated solution Pilot and Beta testing

Ideas for delivering Cloud FaaS+IDP: some options Using MaaS and develop Juju charms orchestrating deployment Develop Puppet scripts + add Foreman Package integrated solution in Docker containers – Orchestrate deployment with Kubernetes Ansible based automated deployment Other solutions coming from the community ?