The French federation Eurocamp 2007 Helsinki

Slides:



Advertisements
Similar presentations
eduroam Delegate Authentication System with Shibboleth SSO
Advertisements

Options for integrating the JANET Roaming Service (JRS) and Shibboleth Tim Chown University of Southampton (UK) JISC Access Management.
Eduserv Athens Federations David Orrell Eduserv Athens Technical Architect.
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI AAI in EGI Status and Evolution Peter Solagna Senior Operations Manager
Access & Identity Management “An integrated set of policies, processes and systems that allow an enterprise to facilitate and control access to online.
1 The Challenges of Creating an Identity Management Infrastructure for the University of California David Walker Karl Heins Office of the President University.
ELAG Trondheim Distributed Access Control - BIBSYS and the FEIDE solution Sigbjørn Holmslet, BIBSYS, Norway Ingrid Melve, UNINET, Norway.
EduPerson and Federated K-12 Activities InCommon/Quilts Pilot Group February 27, 2014 Keith Hazelton UW-Madison, InCommon/I2.
Federations in Texas Barry Ribbeck University of Texas Health Science Center at Houston.
1 Issues in federated identity management Sandy Shaw EDINA IASSIST May 2005, Edinburgh.
EuroCAMP Ljubljana, 3-5 March 2006 TERENA Server Certificate Service Towards the large-scale use of affordable popup-free server certificates for the European.
Beispielbild Shibboleth, a potential security framework for EDIT Lutz Suhrbier AG Netzbasierte Informationssysteme (
Federated Identity, Levels of Assurance, and the InCommon Silver Certification Jim Green Identity Management Academic Technology Services © Michigan State.
Agenda Project beginnings and funding. Purpose of the federation. Federation members. Federation protocols. Special features in our federation. Pilot.
Information Resources and Communications University of California, Office of the President UCTrust Implementation Experiences David Walker, UCOP Albert.
Copyright JNT Association 20051OptionalCopyright JNT Association 2007 Overview of the UK Access Management Federation Josh Howlett.
SWITCHaai Team Federated Identity Management.
F. Guilleux, O. Salaün - CRU Middleware activities in French Higher Education.
Australian Access Federation Robert Hazeltine Identity and Access Management Enterprise Systems Office.
CASE: Haka federation EuroCAMP, 3-5 April, 2006 CSC, the Finnish IT Center for Science
EuroPKI 2008 Manuel Sánchez Óscar Cánovas Gabriel López Antonio F. Gómez Skarmeta University of Murcia Levels of Assurance and Reauthentication in Federated.
Eduroam Louis Twomey HEAnet Library Services Day 20 th November 2014.
Exploring InCommon Getting Started with InCommon: Creating Your Roadmap.
Copyright JNT Association 2005Copyright JNT Association An Introduction to Access Management and the UK Federation Simon Cooper.
InCommon as Infrastructure: How Recommended Practices and Federation Features Help Scale Federated Identity Management Michael R. Gettes, Carnegie Mellon.
Helsinki Institute of Physics (HIP) Liberty Alliance Overview of the Liberty Alliance Architecture Helsinki Institute of Physics (HIP), May 9 th.
Shibboleth in Finnish Higher Education Organisations E-ICOLC 2005 Poznan, Poland.
Michael Ghens Information Systems Specialist Santa Barbara City College.
ELCIRA WP5 Architectural design for services integration.
Kalmar Union, a Conferedation of Nordic Identity Federations TNC2009 Mikael Linden, CSC Andreas Solberg, UNINETT.
Shibboleth at Columbia Update David Millman R&D July ’05
Current list of common attributes of the EDIT federation Single Sign-On for the EDIT platform Lutz Suhrbier¹, Andreas Kohlbecker², Andreas Müller² 1 Freie.
Comité Réseau des Universités News from CRU activities: Identity federation, eduroam, PKI, SCS, Sympa, security policies cru.fr 7th.
Federations round table Haka federation of Finland EuroCAMP Mikael Linden CSC, the Finnish IT Center for Science.
OGF22 25 th February 2008 OGF22 Demo Slides Prof. Richard O. Sinnott Technical Director, National e-Science Centre University of Glasgow, Scotland
INTRODUCTION: THE FIRST TRY InCommon eduGAIN Policy and Community Working Group.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
Test your IdP
Intra- to Inter-institutional Use of Shibboleth Bruce Vincent, Stanford University June 28, 2006.
CARSI: Federated Identity and Resource Sharing over CERNET Dr. PING CHEN Peking University( 北京大学 ) Jan, 24 th, 2008.
The UK Access Management Federation John Chapman Project Adviser – Becta.
Shibboleth Trust Model Shibboleth/SAML Communities (aka Federated Administrations) Club Shib Club Shib Application process Policy decision points at the.
Shibboleth & Federated Identity A Change of Mindset University of Texas Health Science Center at Houston Barry Ribbeck
Security Policy Update WLCG GDB CERN, 14 May 2008 David Kelsey STFC/RAL
Origins: The Requirements of Participating in Federations CAMP Shibboleth June 29, 2004 Barry Ribbeck & David Wasley.
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI Evolution of AAI for e- infrastructures Peter Solagna Senior Operations Manager.
The Policy Side of Federations Kenneth J. Klingenstein and David L. Wasley Tuesday, June 29, CAMP Shibboleth Implementation Workshop.
1 Identities and Federation: The Next IT Wave (The Canadian Access Federation) Rick Bunt President The Canadian University Council of CIOs (CUCCIO)
Shibboleth Use at the National e-Science Centre Hub Glasgow at collaborating institutions in the Shibboleth federation depending.
INTRODUCTION TO IDENTITY FEDERATIONS Heather Flanagan, NSRC.
Leveraging Campus Authentication to Access the TeraGrid Scott Lathrop, Argonne National Lab Tom Barton, U Chicago.
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI Enabling SSO capabilities in the EGI Cloud services Peter Solagna – EGI.eu.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
David Millman—Columbia January 2005
Shibboleth Roadmap
Shibboleth Project at GSU
University of Texas System
John O’Keefe Director of Academic Technology & Network Services
InCommon Steward Program: Community Review
EMI Interoperability Activities
e-Infrastructure Workshop 28th March 2006, University of Leeds
ESA Single Sign On (SSO) and Federated Identity Management
Klaas Wierenga, EuroCAMP Helsinki, 17&18th April 2007
Some data about the CBIC Federation
University Computing Centre - Srce
Mechanisms for Distributed Global Authentication David R Newman.
Overview of The U.T. System Identity Management Federation
Shibboleth in Switzerland
The Attribute and the ecosystem
Presentation transcript:

The French federation Eurocamp 2007 Helsinki Olivier Salaün <os@cru.fr>

The CRU federation Targetting ~200 French HiEd institutions Operated by the CRU Service started in mid 2006 Shibboleth-based Currently : 25 IdPs (400.000 students) 12 SPs

The CRU provides… A test federation (self registration) A production federation A default identity providers For the IdP-less users Includes group management features

The services Library resources On-line courses (national and regional scales) Wi-Fi access for roaming users At a regional scale Aside eduroam service Software distribution for students Intranet for virtual organizations

Policies / agreements The federation is defined as a technical infrastructure, providing a minimum level of assurance The policy defines : the responsabilities of IdPs / SPs / the CRU a set of good practices (no auditing procedures) Joining the federation : IdPs sign a registration agreement SPs sign a registration form

Responsabilities SPs expect IdPs to : IdPs expect IdPs to : ensure the security of the authentication service ensure the ready availibility of their authentication service deliver user attributes according to the common designations, semantics, and associated nomenclatures IdPs expect IdPs to : make a legitimate use of user attributes

Definition of user attributes Based on SupAnn, the LDAP schema for French universities Supann : Based on eduPerson Also defines a set of roles Ongoing work to extend SupAnn for : Courses definition Structures definition

Current concerns Perimeter of the federation to cope with : Research institutes HiEd institutions belonging to other ministries Services for VOs require : Support for distributed identity providers Extending the set of service providers

More information http://federation.cru.fr/cru/index-en.html federation-admin@cru.fr

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.