An AAI solution for collaborations at scale

Slides:



Advertisements
Similar presentations
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI AAI in EGI Status and Evolution Peter Solagna Senior Operations Manager
Advertisements

AARC Overview Licia Florio, David Groep 21 Jan 2015 presented by David Groep, Nikhef.
Authentication and Authorisation for Research and Collaboration Licia Florio (GÉANT) Christos Kanellopoulos (GRNET) Service orientation.
European Life Sciences Infrastructure for Biological Information Life science community update for the 7 th Federated Identity Management.
Authentication and Authorisation for Research and Collaboration Licia Florio REFEDS Meeting The AARC Project I2 Technology Exchange.
Authentication and Authorisation for Research and Collaboration Licia Florio AARC Workshop The AARC Project Brussels, 26 October.
Authentication and Authorisation for Research and Collaboration Peter Solagna Milano, AARC General meeting Current status and plans.
Authentication and Authorisation for Research and Collaboration Peter Solagna Milano, AARC General meeting Current status and plans.
Authentication and Authorisation for Research and Collaboration Christos Kanellopoulos GRNET Proposed Pilots for Libraries and eGov.
Authentication and Authorisation for Research and Collaboration Michał Jankowski, Maciej Brzeźniak AARC General Meeting, Milan.
JRA1.4 Models for implementing Attribute Providers and Token Translation Services Andrea Biancini.
Authentication and Authorisation for Research and Collaboration Christos Kanellopoulos Open Day Event: Towards the European Open.
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI Evolution of AAI for e- infrastructures Peter Solagna Senior Operations Manager.
A uthentication & A uthorization for R esearch & C ollaboration Pilots in SA1 Paul van Dijk, SURFnet AARC.
Networks ∙ Services ∙ People Thomas Bärecke Journée Fédération, Paris Collaboration européenne GÉANT SA5 03/07/2015 SA5 T5 team
Connect communicate collaborate Trust & Identity EC meets GÉANT 19 June 2014 Brussels Valter Nordh, NORDUnet Federation as a Service Task Leader Trust.
Networks ∙ Services ∙ People Marina Adomeit FIM4R meeting Virtual Organisation Platform as a Service VOPaaS Nov 30, 2015, Austria Task Leader,
Authentication and Authorisation for Research and Collaboration Taipei Taiwan Authentication and Authorisation for Research and.
European Grid Initiative AAI in EGI Status and Evolution Peter Solagna Senior Operations Manager
Authentication and Authorisation for Research and Collaboration Licia Florio REFEDS Meeting AARC and AARC2 Vienna, 1 st December.
David Groep Nikhef Amsterdam PDP programme Authentication and Authorization for Research and Collaboration David Groep, Nikhef with materials gratefully.
Networks ∙ Services ∙ People Licia Florio TNC, Lisbon Consuming identities across e- Infrastructures 16 June 2015 PDO GÈANT.
Networks ∙ Services ∙ People Marina Adomeit TNC16 Conference, Prague Towards a platform for supporting collaboration GÉANT VOPaaS
Authentication and Authorisation for Research and Collaboration Peter Solagna, Nicolas EGI AAI integration experiences AARC Project.
Authentication and Authorisation for Research and Collaboration David Kelsey AARC AHM Utrecht NA3 Task 4 – Scalable Policy Negotiation.
Authentication and Authorisation for Research and Collaboration AARC/CORBEL Workshop for Life Sciences AAI AARC Draft Blueprint.
Networks ∙ Services ∙ People Ann Harding Networkshop 44, Manchester Thinking globally, acting locally Trust and Identity in the GÉANT project.
Networks ∙ Services ∙ People Mandeep Saini AARC/CORBEL Workshop Collaborative Organisation Platform as a Service June 1, 2016, Paris Product.
Authentication and Authorisation for Research and Collaboration Licia Florio IGTF Meeting The AARC Project Amsterdam, 8 September.
ELIXIR AAI Michal Procházka, Mikael Linden, EGI VC 15 March 2016.
Security in the wider world David Kelsey (STFC-RAL) GridPP37 – Ambleside 2 Sep 2016.
Introduction to AAI Services
The EGI AAI “CheckIn” Service
WLCG Update Hannah Short, CERN Computer Security.
Boosting AAI for research and collaboration
RCauth.eu CILogon-like service in EGI and the EOSC
Cross-sector and user-centric AAI
Authentication and Authorisation for Research and Collaboration
EGI Updates Check-in Matthew Viljoen – EGI Foundation
AAI for a Collaborative Data Infrastructure
AARC Update What’s been happening in AARC which matters for GÉANT
User Community Driven Development in Trust and Identity
eduTEAMS platform for collaboration Niels Van Dijk
eduTEAMS – Current status & Future Plans
eduTEAMS Roadmap and Timeline,
Wrap up Licia Florio AARC Coordinator
Identity Management and Authorization
Christos Kanellopoulos
CheckIn: the AAI platform for EGI
AAI Alignment Nicolas Liampotis (based on the work of Mikael Linden)
Boosting AAI for research and collaboration
Updates on Training Andrea Biancini (AARC2.AHM)2 NA2 WP leader
The AARC Project Licia Florio (GÉANT) Christos Kanellopoulos (GRNET)
The AARC Project Licia Florio AARC Coordinator GÉANT
Identity Management and Authorization
Identity Management and Authorization
GÉANT project update eduTEAMS - AAI as a Service for Collaborative organisations Introduction Status Pilots New Features – input requested InAcademia –
Thursday pilot session: 7-minutes
EduTEAMS at a Glance Mandeep Saini Linz, Austria 30 May 2017.
Pilots in AARC Arnout Terpstra (AARC2) / Paul van Dijk (AARC1)
AAI For Researchers Licia Florio AARC Project Coordinator GÉANT DI4R
AARC Blueprint Architecture and Pilots
AARC2 JRA1 Update Nicolas Liampotis
AAI Architectures – current and future
RCauth.eu CILogon-like service in EGI and the EOSC
Community AAI with Check-In
AAI in EGI Status and Evolution
JRA1: Integrated AAI Developments
UmbrellaID in the EOSC era ?
Check-in Identity and Access Management solution that makes it easy to secure access to services and resources.
Presentation transcript:

An AAI solution for collaborations at scale eduTEAMS An AAI solution for collaborations at scale Christos Kanellopoulos, GÉANT DI4R17 30 November 2017 Brussels, Belgium

eduTEAMS A suite of services for using federated AAI for collaborations Collaboration suite to enable use of federated identity in research communities Partner for any e-Infra or Research Infra inc. “long tail”, informal groups Components eduTEAMS Membership Management service eduTEAMS Discovery Service eduTEAMS Identity Hub eduTEAMS Proxy Characteristics 2 monthly release cycle Supports AARC architecture Single- and multi-tenant options Documentation, Cookbooks, Privacy Policy etc available https://wiki.geant.org/display/ED

Research communities and e-Infrastructures NRENS eduTEAMS - Pilots Engaging with communities, eInfras and NRENs Research communities and e-Infrastructures AARC2-as-VO (Pilot committed) LifeScience AAI (Pilot) Umbrella (Pilot committed) HPC-Europe (Pilot interest) EUDAT (Pilot committed)* EGI * * as part of AARC2 interoperability activity NRENS JISC (Pilot committed) Moonshot Pathfinder project SURFnet (Pilot committed) Science Collaboration Zone project GARR (Pilot interest) SWITCH (Pilot interest) SWITCH eduID Swiss Personalised Health Network Swiss Data Science Center Swiss National Supercomputing Centre

Manage Roles and Rights NRENS eduTEAMS Membership Management Service (MMS) Manage Roles and Rights Available trough eduGAIN CoCo and R&S supported Strong focus on privacy and GDPR part of AARC2 interop activity Technical and cookbooks: https://wiki.geant.org/display/ED/Membership+Management+Service Service: https://registry.eduTEAMS.org NRENS JISC (Pilot committed) Moonshot Pathfinder project SURFnet (Pilot committed) Science Collaboration Zone project GARR (Pilot interest) SWITCH (Pilot interest) SWITCH eduID Swiss Personalised Health Network Swiss Data Science Center Swiss National Supercomputing Centre

eduTEAMS Membership Management Service (MMS) - ecosystem IdP REST AA SAML AA COmanage eduTEAMS Membership Management Service Provider AuthN: ID + attributes eduTEAMS Identity Hub External IdP

eduTEAMS Discovery Service Component of eduTEAMS, but generically usable for eduGAIN SPs Based on proven service from CESNET Engaged in RA21 Pilot – Resource Access for the 21st Century (https://ra21.org) Publishers, libraries and users https://wiki.geant.org/display/ED/Discovery+Service

eduTEAMS Identity Hub https://wiki.geant.org/display/ED/Identity+Hub Implemented eduTEAMS Identity Hub Persistent ID LOA Account Recovery Future https://wiki.geant.org/display/ED/Identity+Hub

eduTEAMS Proxy eduTEAMS Proxy eduTEAMS Membership Management SP SP SP eduTEAMS Identity Hub REST AA COmanage eduTEAMS Membership Management OIDC SAML LDAP AA eduTEAMS Proxy eduTEAMS Discovery SAML AA SAML OIDC SP SP SP

Service offerings available to pilot now. Multi-tenant – long tail Membership management, ID Hub, Discovery Shared infra – every collab is a group Free at point of use to groups (use sponsored by NRENs) No contracts needed, no legal form required Limitations on personal data etc. Single tenant – complex community needs, dedicated instance Membership management, ID Hub, Discovery, Proxy Dedicated instances on a VM Greater control over data – contract needed. Possibility on case by case basis to support interface with more complex systems Lead time TBD depending on complexity of case – HEXXA/PERUN/Grouper/Other examples

eduTEAMS Component Multi-tenant Single-tenant Membership Management Service ✔ Discovery Identity Hub Proxy

Thank you Any questions?

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.