Shibboleth in Switzerland

Slides:



Advertisements
Similar presentations
Lousy Introduction into SWITCHaai
Advertisements

College An insight Into the College VLE Graham Mason
1 Wolfgang Lierz Staff IT-Services / Network & Security Admin ETH-Bibliothek Zurich Integration Primo-Aleph-PDS-SSO- AAI Wolfgang Lierz / IGeLU 2012 Zurich.
The Internet2 NET+ Services Program Jerry Grochow Interim Vice President CSG January, 2012.
EduPerson and Federated K-12 Activities InCommon/Quilts Pilot Group February 27, 2014 Keith Hazelton UW-Madison, InCommon/I2.
2005 © SWITCH Authentication and Authorization Infrastructure Martin Sutter, Head of NetServices Thomas Lenggenhager, Deputy Project Manager AAI Christoph.
2006 © SWITCH Authentication and Authorization Infrastructures in e-Science (and the role of NRENs) Christoph Witzig SWITCH e-IRG, Helsinki, Oct 4, 2006.
1 Issues in federated identity management Sandy Shaw EDINA IASSIST May 2005, Edinburgh.
1 eAuthentication in Higher Education Tim Bornholtz Session #47.
CSC – Tieteen tietotekniikan keskus Oy CSC – IT Center for Science Ltd. The Language Bank of Finland User Authentication and Authorization Service
2006 © SWITCH SWITCH Plans for Shibboleth and Grid GGF16 Feb 14, 2006 Christoph Witzig (Thomas Lenggenhager, Valery Tschopp, Placi Flury) SWITCH.
Shibboleth & IMPETUS 1.What are they? 2.Demo. Shibboleth - A system to support the sharing of Web resources among organisations IMPETUS - Infrastructure.
Peter Deutsch Director, I&IT Systems July 12, 2005
Widely Distributed Access Management Tom Barton University of Chicago.
InCommon Policy Conference April Uses  In order to encourage and facilitate legal music programs, a number of universities have contracted with.
Requirements of a public and university Library for authentication and authorization infrastructures Wolfgang Lierz ETH-Bibliothek Head IT Services.
SWITCHaai Team Federated Identity Management.
To identity federation and beyond! Josh Howlett JANET(UK) HEAnet 2008.
AAF Middleware update February Presented by Terry Smith Technical Manager and Heath Marks Manager.
Introduction to Grouper Part 1: Access Management & Grouper Tom Barton University of Chicago and Internet2 Manager – Grouper Project.
The InCommon Federation The U.S. Access and Identity Management Federation
2006 © SWITCH Spring 2006 Internet2 Member Meeting The SWITCHaai Federation in Switzerland Thomas Lenggenhager
Identity Management Practical Issues Associated with Sharing Federated Services UT System Identity Management Federation William A. Weems The University.
Copyright JNT Association 2005Copyright JNT Association An Introduction to Access Management and the UK Federation Simon Cooper.
2005 © SWITCH Deployment of a Shibboleth-based Infrastructure in Switzerland: SWITCHaai Martin Sutter, Head of NetServices, SWITCH (Ueli Kienholz & Thomas.
2004 © SWITCH 1 Shibboleth in Switzerland Internet2 Spring Meeting 2004 Thomas Lenggenhager Overview SWITCH & SWITCHaai Project.
AAI-enabled VO Platform “VO without Tears” Christoph Witzig EGI TF, Amsterdam, Sept 15, 2010.
2005 © SWITCH Perspectives of Integrating AAI with Grid in EGEE-2 Christoph Witzig Amsterdam, October 17, 2005.
2006 © SWITCH Grid Activities at SWITCH Christoph Witzig EGEE - 06 Geneva Sep 28, 2006.
Michael Ghens Information Systems Specialist Santa Barbara City College.
Presented by: Presented by: Tim Cameron CommIT Project Manager, Internet 2 CommIT Project Update.
10/25/2015 AEB/Yleisesittely Organising Federated Identity in Finnish Higher Education TNC2005 Mikael Linden June 8th, 2005.
Shibboleth at Columbia Update David Millman R&D July ’05
Connect. Communicate. Collaborate The authN and authR infrastructure of perfSONAR MDM Ann Arbor, MI, September 2008.
JRA1.4 Models for implementing Attribute Providers and Token Translation Services Andrea Biancini.
2003 © SWITCH Authentication and Authorisation Infrastructure - AAI Christoph Graf Project Leader AAI SWITCH.
Advanced research and education networking in the United States: the Internet2 experience Heather Boyles Director, Member and Partner Relations Internet2.
Administrative Information Systems Shibboleth Install Session Technical Information Session for Developers Datta Mahabalagiri.
EGI-InSPIRE RI EGI-InSPIRE EGI-InSPIRE RI Evolution of AAI for e- infrastructures Peter Solagna Senior Operations Manager.
EGEE-II INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Interoperability Shibboleth - gLite Christoph.
Federated Identity Fundamentals Ann Harding, SWITCH Cambridge July 2014.
AAI needs of the Distributed Computing Infrastructures - CLARIN Dieter Van Uytvanck Max Planck Institute for Psycholinguistics
INTRODUCTION TO IDENTITY FEDERATIONS Heather Flanagan, NSRC.
Authentication and Authorisation for Research and Collaboration AARC/CORBEL Workshop for Life Sciences AAI AARC Draft Blueprint.
10/08/20041 © 2004 Pete Palmer Federated Identity Management and Regional Health Information Organizations Pete Palmer, Principal Security Analyst, Guidant.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
Networks ∙ Services ∙ People Di4R Network. Services. People. GÉANT 28 th September, Krakow.
Web SSO with Cloud Resources using AD Federation Services
David Millman—Columbia January 2005
INSPIRE and the role of Spatial Data Interest Communities (SDIC)
AENEAS WP6 first conference call
ESA EO Federated Identity Management Activities
LIGO Identity and Access Management
eduTEAMS platform for collaboration Niels Van Dijk
eduTEAMS – Current status & Future Plans
An authorization service for Virtual Organizations (VO)
Géant-TrustBroker Dynamic inter-federation identity management
David P. Reed MIT CFP Draft May 2007
Current Campus Issues – From My Horizon
An AAI solution for collaborations at scale
Solutions for federated services management EGI
ESA Single Sign On (SSO) and Federated Identity Management
The French federation Eurocamp 2007 Helsinki
E-Commerce for Developing Countries (EC-DC)
Ready for PKI tests with the SWITCH Swisskey Corporate ID
AAI Architectures – current and future
UK Federation 101 Ian A. Young EDINA, University of Edinburgh (and the UK Federation) Internet2 Fall Member Meeting, 7 Dec Shibboleth Development.
Guests and Collaborators
The JISC Core Middleware Call
User Provisioning Project
Presentation transcript:

Shibboleth in Switzerland Internet2 Spring Meeting 2004 Thomas Lenggenhager lenggenhager@switch.ch Overview SWITCH & SWITCHaai Project SWITCHaai Federation Integrating Resources into legal framework Virtual Home Organizations

SWITCH SWITCH – The Swiss Education & Research Network a foundation of the federal and regional governments provides connectivity redundant dark-fiber based backbone and network services for Swiss universities AAI, video conference, mail gateways, … 12 universities 110’000 students 47’000 faculty & staff 7 universities of applied sciences 36’000 students 17’000 faculty & staff Swiss population ~ 7 million http://www.switch.ch/

SWITCHaai SWITCHaai – Authentication & Authorization Infrastructure Shibboleth selected as architecture in mid 2003 current status: migration from pilot to production service 5 Home Organizations at bigger universities SWITCH HomeOrg & Virtual Home Organization (VHO) 3 e-learning resources in use by students public demo resources http://www.switch.ch/aai/demo/ http://www.switch.ch/aai/

SWITCHaai Federation SWITCH acts as federation service provider Federation membership based on signed service agreements

Resources and the Federation Resource has to belong to an organization of a federation member Resource Registry Resource description (technical & human oriented) Resource owner Attribute requirements Community of interest Information source for ARP generation Third Party Resources Integration of Federation Partners: for further study

Virtual Home Organization – VHO Problem: Users without a shibbolized Home Org What shall they do? Solution: Virtual Home Organization The exception, not the rule! Minimal information Clearly marked as special users through swissEduPersonHomeOrganizationType = vho use of entitlement attribute for authorization Project/resource oriented Users managed by the project/resource owner One user might have multiple identities

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.