The Changing Role of the Technologist as Higher Ed Embraces the Cloud Michele Decker, University of Notre Dame Jacob Farmer, Indiana University Derek D.

Slides:

Advertisements

Similar presentations

Whos the Architect? Credential Provisioning Network Access Directory Services Authentication, Authorization and Accounting Federation Single.

Advertisements

Pennsylvania Banner Users Group 2008 Fall Conference Campus Identity Management in a Banner World.

Office 365 Identity June 2013 Microsoft Office365 4/2/2017

Agenda AD to Windows Azure AD Sync Options Federation Architecture

KC-ROLO Project Kidderminster College Repository Of Learning Objects Graham Mason & Ed Beddows.

The Internet2 NET+ Services Program Jerry Grochow Interim Vice President CSG January, 2012.

Applying the SOA RA Utah Public Safety ESB Project Utah Department of Technology Services April 10, 2008 Prepared by Robert Woolley.

Audit Issues regarding Passwords on Elevated Privilege Accounts Gene Scheckel Global Internal Audit.

Security that is... Ergonomic, Economical and Efficient! In every way! Stonesoft SSL VPN SSL VPN.

1 Miami-Dade County Public Schools. 2 From the Data Center to the Cloud: Manny Castañeda Miami-Dade County Public Schools.

Internet2, CENIC and Merit: Partnering to Deliver Cloud Services to California.

1 Issues in federated identity management Sandy Shaw EDINA IASSIST May 2005, Edinburgh.

1 DCS860A Emerging Technology Physical layer transparency in Cloud Computing (rev )

Federated sign-in WS-Federation WS-Trust SAML 2.0 Metadata Shibboleth Graph API Synchronize accounts Authentication.

Information Resources and Communications University of California, Office of the President UCTrust Implementation Experiences David Walker, UCOP Albert.

Identity and Access Management IAM. 2 Definition Identity and Access Management provide the following: – Mechanisms for identifying, creating, updating.

Chapter 8: Network Operating Systems and Windows Server 2003-Based Networking Network+ Guide to Networks Third Edition.

ERP Security Checklist ENT 2007 Joy R. Hughes VPIT and CIO George Mason University Co-chair STF.

SaaS, PaaS & TaaS By: Raza Usmani

Shibboleth and InCommon Copyright Texas A&M University This work is the intellectual property of the author. Permission is granted for this material.

Microsoft Office 365 and Collaboration Services in the Cloud Maria Hishikawa IT Specialist Bureau of Alcohol, Tobacco, Firearms and Explosives.

CONNECT as an Interoperability Platform - Demo. Agenda Demonstrate CONNECT “As an Evolving Interoperability Platform” –Incremental addition of features.

Shibboleth Case Studies: Shibboleth as the Campus Web SSO Albert Wu, UCLA Datta Mahabalagiri, UCLA.

(Rev 1/11) UW System Identity and Access Management (IAM) Current Status and Roadmap Tom Jordan, IAM-TAG Chair Ty Letto, IAM Support Team Manager January,

Aegis Identity Software, Inc. presents Trends in Identity and Access Management in Higher Education to US Federations June 20, 2012 Janet Yarbrough – Director.

WHEN TITLE IS NOT A QUESTION N O ‘WE CAN’ WHEN TITLE IS NOT A QUESTION N O ‘WE CAN’ WHEN TITLE IS NOT A QUESTION N O ‘WE CAN’ Identity and Privacy: the.

Integrating with UCSF’s Shibboleth system

A337 File Design Computerized and Manual Systems 11/10/2009.

Federation Strategy Robert Ricci GENI-FIRE Workshop September 2015.

Federated or Not: Secure Identity Management Janemarie Duh Identity Management Systems Architect Chair, Security Working Group ITS, Lafayette College.

Belnet Federation Belnet – Loriau Nicolas Brussels – 12 th of June 2014.

The I-Trust Federation: Federating the University of Illinois Keith Wessel Identity Management Service Manager University of Illinois at Urbana-Champaign.

Internet2 Middleware Initiative. Discussion Outline  What is Middleware why is it important why is it hard  What are the major components of middleware.

Using Enterprise Logins in Portal for ArcGIS via SAML Greg Ponto & Tom Shippee.

Outsourcing Student at USC Institute for Computer Policy and Law Cornell University, August 2008 Asbed Bedrossian Director of Enterprise Applications.

INTRODUCTION: THE FIRST TRY InCommon eduGAIN Policy and Community Working Group.

Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.

© Intapp, Inc. 1 Cloud Strategies for Law Firms: Enabling Lawyer Productivity, Maintaining Firm Control.

- NCSU project goals and requirements - Adoption Drivers - Current challenges and pain points - Identacor at NCSU - Identacor Features - NCSU Key Benefits.

Projecting Infrastructure to the CLOUD CSG discussion Fall Princeton University.

Vendor Management from a Vendor’s Perspective. Agenda Regulatory Updates and Trends Examiner Trends Technology and Solution Trends Common Issues and Misconceptions.

Identity Management and Enterprise Single Sign-On (ESSO)

University of Washington Collaboration: Identity and Access Management Lori Stevens University of Washington October 2007.

Identity Management, Federating Identities, and Federations November 21, 2006 Kevin Morooney Jeff Kuhns Renee Shuey.

KC-ROLO Project Kidderminster College Repository Of Learning Objects Graham Mason & Ed Beddows.

Mark Gilbert Microsoft Corporation Services Taxonomy Building Block Services Attached Services Finished Services.

1 Managing Your Infrastructure in a Federated World CAMP – In Production: Management Tues, 22-June-2010, Raleigh, NC Kevin Morooney, Penn State, Moderator.

Understanding deployment issues on the Supply Chain Ann Harding, SWITCH, Nicole Harris, TERENA Cambridge July 2014.

SEPARATE ACCOUNTS FOR PROSPECTS? WHAT A HEADACHE! Ann West Assistant Director, InCommon Assurance and Community Internet2 at Michigan Tech.

Trust and Identity Infrastructure Services Above the Network Ann Harding, SWITCH/GÉANT UbuntuNetConnect 2014.

Name: Dr. Cathal Doyle Twitter: Website: cathaldoyle.comcathaldoyle.com.

Agenda  Microsoft Directory Synchronization Tool  Active Directory Federation Server  ADFS Proxy  Hybrid Features – LAB.

INTRODUCTION TO IDENTITY FEDERATIONS Heather Flanagan, NSRC.

Business Objects XIr2 Windows NT Authentication Single Sign-on 18 August 2006.

INFORMATION ASSURANCE POLICY. Information Assurance Information operations that protect and defend information and information systems by ensuring their.

The Four Pillars of Identity: A Solution for Online Success Tom Shinder Principle Writer and Knowledge Engineer, SCD iX Solutions Group Microsoft Corporation.

“ Unleash the power of trusted collaboration” PortalTalk is a ready-made and complete solution for trusted collaboration in the cloud. It seamlessly integrates.

ADFS - Does it Still have a Place? Fitting into the EMS puzzle Frank C. Drewes III 2016 Redmond Summit | Identity.

Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.

Phase 4: Manage Deployment

By: Raza Usmani SaaS, PaaS & TaaS By: Raza Usmani

Service Organization Control (SOC)

Hosted on Azure, LoginRadius’ Customer Identity

Cloud Connect Seamlessly

ESA Single Sign On (SSO) and Federated Identity Management

05 | AD to Windows Azure AD IT Professionals

Office 365 Identity Management

AD FS Installation Active Directory Federation Services (AD FS) 7.1

PLANNING A SECURE BASELINE INSTALLATION

IT Management Services Infrastructure Services

Presentation transcript:

The Changing Role of the Technologist as Higher Ed Embraces the Cloud Michele Decker, University of Notre Dame Jacob Farmer, Indiana University Derek D Owens, University of Notre Dame Kris Steinhoff, University of Michigan

Relationships The success of a cloud deployment is dependent on an effective and diverse team. The engagement pattern for the team is very different than for on-premise software. If you don't include a lawyer, you may be doing it wrong.

Systems Integration Scripting and using vendor APIs  Creating ad hoc tools  Integrating with campus systems Filling gaps Working with vendors  Identifying bugs  Defining feature requests Broad knowledge Communicating requirements and changes

Federated Identity Having flexible IAM practices and a federation infrastructure in place, can greatly reduce the complexity of integration.

Federated Identity Benefits for Vendor/SP  Don’t have to maintain user accounts  Common way to integrate with enterprise customers (reduces startup time)  NET+ involvement opens a large market Risks/Costs for Vendor/SP  Install and maintain SP software o Box still isn’t an InCommon SP, have to manually update metadata  Change their login flow  Custom branding for enterprises

Federated Identity Benefits for Institution/IdP Don’t have to maintain/sync user passwords to third party Common integration method Auto-provisioning Internet2 network

Federated Identity Risks/Costs for Institution/IdP Not all of features/service offerings from Vendor/SP are integrated with SSO Can’t restrict/control all login flows  invitations to sign-up Vendor/SP not able to accommodate multiple IdPs for one enterprise Auto-provisioning (lack of control of the process)

Federated Identity Skills needed to operate a Shibboleth IdP Technical Skills /IdPSkills Policy Understanding

Security, Trust, Assurance Sensitive Data  HIPAA, FERPA Audit, Compliance, IT Governance  SAS70 II  Logging  Monitoring “Low-Touch”, trust of vendor  Trust but verify Credentials  Non-Federated access, alternate credentials Exit Strategy

Evolving Skills Good communication, facilitation, and “whiteboarding” skills  Oral and written communication skills are fundamental to success Persistence and ability to live with chaos  Cloud computing is fast-changing New delivery methods appear frequently  Requirements and processes change frequently Breadth of knowledge  Jack Of All Trades, Polymath, "Renaissance Man"  Focus upon integration, less so on building  "Infrastructure Enablers"

Evolving Skills Can’t control progress of vendor  “Keeping up with the KardashiansJoneses”  Let them “do their thing” Don’t have to understand all the nuts and bolts  Continuous review/revision of service and integration

Questions?