Shibboleth: Improving Access for Library Users InCommon Library/Shibboleth Project Holly Eggleston, UC San Diego.

Slides:



Advertisements
Similar presentations
E-resources Collection Management Anna Grigson E-resources Manager.
Advertisements

Federated Access implementation: experience of AUCA Library - Kyrgyzstan 4 th -7 th June, 2008, Aberdeen, Scotland Sania Battalova, EIFL Country and FOSS.
EVERY CONNECTION has a starting point. EVERY CONNECTION has a starting point. WorldCat Navigator - Authentication Library Hosted Navigator EZproxy and.
Planning a Campus-Wide Course Materials Support System With SiteSearch Jennie McKee SiteSearch Users Group May 3, 2000.
Access & Identity Management “An integrated set of policies, processes and systems that allow an enterprise to facilitate and control access to online.
ELAG Trondheim Distributed Access Control - BIBSYS and the FEIDE solution Sigbjørn Holmslet, BIBSYS, Norway Ingrid Melve, UNINET, Norway.
1 L U N D U N I V E R S I T Y a home grown, bespoke institutional Federated Search tool JIBS Conference at The John Rylands University Library,
ICOLC October 4, 2001 OCLC Services. Purpose Libraries’ web-based information portal needs –Maximize consortia’s role in their members’ use of database.
Serials Solutions: Company overview. We help libraries work better Data. Trust in authoritative, enriched, updated metadata Manage. Control the complexities.
1. The Digital Library Challenge The Hybrid Library Today’s information resources collections are “hybrid” Combinations of - paper and digital format.
Building the Future: Millennium’s Relationship with Campus Systems and Services John Culshaw Faculty Director for Systems University of Colorado at Boulder.
Controlling Access to Resources for Walk-In Users 14 September 2006 Rod Crowley Systems Team Leader Leeds University Library.
Christopher Lewis - EBSCO Information Services Robert Jacobs - Swets How will subscription agents help you manage your e-resources in a constantly changing.
BC Integration of Systems and Resources MetaLib at Boston College Theresa Lyman Digital Resources Reference Librarian Boston College Libraries.
Information Literacy in a Rapidly Evolving Educational and Research Environment The Hybrid Research Environment Prof. Monica Berger June 8, 2005.
Experiences on services enabling integration of electronic resources: A to Z (EBSCO) and ScholarSFX (SFX Express with Google Scholar) Natalia Litvinova.
UC Irvine’s Pre-Shib Attribute Setup PH / QI Directory Provides Authoritative Attribute Store –Had both Faculty / Staff and Student Information UCI’s Campus.
Research databases in a mobile computing environment Ya Wang Electronic Collections Coordinator San Francisco State University San Diego, CA January 9,
Filling the Gap Between Vendor & User Practice Denise Troll Covey Associate University Librarian, Carnegie Mellon DLF Forum, November 2002.
Shibboleth: EBSCOhost implementation Lech Wojtowicz Director of Software Development EBSCO Publishing Access 2003 October 3, 2003.
Cambridge University Library
Using a Third-Party Proxy System with the Innovative Patron API Emalee Craft, Jennifer Ward University of Washington Libraries Innovative Users Group Meeting,
Toni Janik MDMLG April 22, Why Medical Digital Libraries?  24 hour access to collection  Ability to access library from home, office, patient.
DECIDING ON A DISCOVERY TOOL MAKING WISE CHOICES IN A DIGITAL AGE WEIHUA SHI
Federated Searching Pre-Conference Workshop - The federated searching cookbook Qin Zhu HP Labs Research Library February 18, 2007.
Credential Provider Operational Practices Statement CAMP Shibboleth June 29, 2004 David Wasley.
WISER: Remote access to databases and datasets This session will help you to set up access to Oxford online resources from your home computer. The key.
University of Kentucky Proxy Service Presentation By Kelly Vickery
3 Nov 2003 A. Vandenberg © Second NMI Integration Testbed Workshop on Experiences in Middleware Deployment, Anaheim, CA 1 Shibboleth Pilot Local Authentication.
Directory Services at UMass  Directory Services Overview  Some common definitions  What can a directory do or not do?  User Needs Assessment  What.
Single Sign-On Offerings Dustin MacIver EBSCO Publishing 6/4/2011.
Aoife Lawton Systems Librarian HSE. Outline eLibrary models of authentication Library/Librarian visibility – some tips Mobile technologies Federated Search.
Linking the Library and the Course Management System Claire Dygert American University Library NASIG Annual Conference 2006.
Link Resolvers: Serials Solutions Aine Finucane Acquisitions Librarian University of Limerick LIR Annual Seminar 2005.
Copyright JNT Association 2005Copyright JNT Association An Introduction to Access Management and the UK Federation Simon Cooper.
Help your users to discover your content With OpenAthens & Link Resolvers Lyn Norris.
NELLI - INFORMATION RETRIEVAL PORTAL. NELLI Information retrieval portal National ELectronic Library Interface One interface to all material –Licensed.
Diana McDuffee North Carolina AHEC Digital Library Hospital_Librarians_Symposium.ppt.
10 years of HEAL-Link Trieste, Italy. Increase of electronic journals accessible to the members of HEAL-Link
QuestionPoint Worldwide Cooperative Reference ICOLC Meeting September 19, 2002 Paul Cappuzzello, West Region Manager
UCLA Enterprise Directory Identity Management Infrastructure UC Enrollment Service Technical Conference October 16, 2007 Ying Ma
Shibboleth for Real Dave Kennedy
Presented by: Presented by: Tim Cameron CommIT Project Manager, Internet 2 CommIT Project Update.
Library Research Sources at UGA. UGA Libraries  Comprised of the Main library, Science library, Student Learning Center and Research Facilities  3.7.
David Kennedy, UMD Shibboleth and Library Resources Internet2 Library/Shibboleth Project.
The National Science Digital Library & Shibboleth.
1 Annual Meeting 2004 CrossRef Publishers International Linking Association, Inc Charles Hotel, Cambridge, MA November 9 th, 2004.
CBSOR,Indian Statistical Institute 30th March 07, ISI,Kokata 1 Digital Repository support for Consortium Dr. Devika P. Madalli Documentation Research &
MAT U M A T U Middleware Assisted Take-Up Service For JISC Funded Early Adopters.
Shibboleth Access Management System Walter Hoehn & David Millman, Columbia University.
Holly Eggleston, UCSD Shibboleth and Library Resources InCommon Library/Shibboleth Project.
WISER: Remote access to databases and datasets This session will help you to set up access to Oxford online resources from your home computer. The session.
NUOL Internet Application Services Midterm presentation 22 nd March, 2004.
Shibboleth What is it and what is it good for? Chad La Joie, Georgetown University.
1 herbert van de sompel CS 502 Computing Methods for Digital Libraries Cornell University – Computer Science Herbert Van de Sompel
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
Shibboleth: OSU Early Adoption Scenarios Scott Cantor April 10, 2003 Scott Cantor April 10, 2003.
Access and Information Protection Product Overview Andrew McMurray Technical Evangelist – Windows
Easy Remote Access to Any Database: A New OPLIN Service Don Yarman OPLIN Stakeholders’ Meeting October 28, 2005.
Shibboleth at USMAI David Kennedy Spring 2006 Internet2 Member Meeting, April 24-26, 2006 – Arlington, VA.
The State of Identity Management on Your Campus Session Moderators Jacob Farmer, Indiana University Theresa Semmens, North Dakota State University November.
Holly Eggleston, UCSD Beyond the IP Address: Shibboleth and Electronic Resources InCommon Library/Shibboleth Project.
Some thoughts on Authentication in general….and Shibboleth in particular James Mouw Asst. Director for Technical and Electronic Services The University.
Enhanced Navigation Implementation Group Presentation at All Staff Meeting June 26, 2002.
Jakob Gadegaard Bendixen, Shibboleth protected proxy servers a case study from the Danish library sector.
Shibboleth at USMAI David Kennedy Spring 2006 Internet2 Member Meeting, April 24-26, 2006 – Arlington, VA.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
Third Party Applications: EZproxy
Linking Users, Resources, & Data Driven Decisions with OpenAthens
JSTOR as a Shibboleth Target
Presentation transcript:

Shibboleth: Improving Access for Library Users InCommon Library/Shibboleth Project Holly Eggleston, UC San Diego

Overview Overview of electronic resources About the Library/Shibboleth Project Future directions 2

Holly Eggleston, UC San Diego What is a Licensed Electronic Resource? Journals, books, encyclopedias, databases, data sets, images, audio Indexes and/or full text For paid resources, can be a one time payment or ongoing annual subscription Subject to use and access restrictions beyond regular copyright 3

Holly Eggleston, UC San Diego Electronic Resources Background Ten years of growth Prevalence of home computing Increase in distance education Convenience and user expectation Hundreds of vendors, thousands of resources Significant part of the library collection budget Access and use restrictions Substantial work to integrate this seamlessly 4

Holly Eggleston, UC San Diego Providing IP Access to E-resources Restricted to authorized users Students, staff and faculty Users who are present at the library (walk-ins) Restricted to specified locations Restricted campus locations (labs) Full campus Remote access (off-campus) Library provides vendor with list of IP addresses 5

Holly Eggleston, UC San Diego Scenario 1 - IP validated resource, on campus User Nature.com IP Validated Resource 6

Holly Eggleston, UC San Diego Electronic Resource Challenges Maintaining IPs is time consuming and unreliable Remote access is problematic 7

Holly Eggleston, UC San Diego Accessing resources remotely Restricted to students, faculty and employees Requires user name and password Uses authentication software Traditional proxy Rewrite proxy Client VPN 8

Holly Eggleston, UC San Diego Scenario 2 - IP validated resource, off campus User Nature.com Proxy / VPN IP Validated Resource 9

Holly Eggleston, UC San Diego10

Holly Eggleston, UC San Diego11

Holly Eggleston, UC San Diego Remote Client Access Challenges Requires proxy or client VPN software to assign campus-controlled IP to user machine Often requires user to configure their machine User confusion Browser / firewall conflicts Lockdown environments Multiple passwords to remember Maintenance of IP list at the institution Maintenance of IP list at the vendor 12

Holly Eggleston, UC San Diego In an ideal world … Integrated access to licensed library resources regardless of user location Consistent user experience for authentication Reduced maintenance overhead for library resources Reliable authentication for vendors 13

Holly Eggleston, UC San Diego What is the Library/Shibboleth Project? Established 2007 Six universities + Internet2 Campus IT, Library IT, Librarians 14

Holly Eggleston, UC San Diego Focus of the Library/Shibboleth Project Improving access to licensed electronic resources Identify user scenarios Document business practice and technology issues Test proposed solutions 15

Holly Eggleston, UC San Diego Technologies investigated Federated Access Shibboleth Shibboleth-enabled Rewrite Proxy EZProxy WebVPN 16

Holly Eggleston, UC San Diego What is Shibboleth? Open source standards-based web single sign-on package Leverages local identity management system Enables access to campus and external applications Protects users’ privacy Helps your service partners Plays well with others 17

Holly Eggleston, UC San Diego What is a Federation Institutions and vendors Provides a pre-agreed standard Simplifies configuration process 18

Holly Eggleston, UC San Diego What can be accessed through Shibboleth Internal campus resources Internal library resources ILS ILL Proxy/VPN Repositories External resources Licensed commercial resources 19

Holly Eggleston, UC San Diego Shibboleth-enabled information providers American Chemical Society Atlas (ILLiad/ARES) Atypon CSA EBSCO Elsevier Science Direct Ex Libris EZProzy JSTOR Literary Encyclopedia OCLC OVID/SilverPlatter Project MUSE Proquest Safari SCRAN Serials Solutions Springer Thomson Gale Thomson ISI 20

Holly Eggleston, UC San Diego Scenario 3 - Shib-enabled resource anywhere User Science Direct IdP Shibboleth-enabled resource 21

Holly Eggleston, UC San Diego22

Holly Eggleston, UC San Diego23

Holly Eggleston, UC San Diego24

Holly Eggleston, UC San Diego25

Holly Eggleston, UC San Diego26

Holly Eggleston, UC San Diego Scenario 4 - Shib-enabled resource, on campus Walk-in user Science Direct IdP mod auth location Shibboleth-enabled resource Guest / known 27

Holly Eggleston, UC San Diego Library concerns with Shibboleth Communication with campus IT Privacy Privacy with individual vendors Privacy across vendors Session persistence User experience is different for on-campus users Walk-in users don’t have SSO accounts Library patron database integration Not all resources will use Shibboleth IP is still needed for some resources 28

Holly Eggleston, UC San Diego What is a rewrite proxy? Example: EZProxy Server side proxy Inexpensive Library-focused Widely implemented Single-sign on compatible 29

Holly Eggleston, UC San Diego Scenario 5 - Single sign on rewrite proxy User Science Direct EBSCO EZProxyIdP mod auth location Shibboleth-enabled resource IP validated resource Library Home Page 30

Holly Eggleston, UC San Diego31

Holly Eggleston, UC San Diego32

Holly Eggleston, UC San Diego33

Holly Eggleston, UC San Diego34

Holly Eggleston, UC San Diego35

Holly Eggleston, UC San Diego36

Holly Eggleston, UC San Diego37

Holly Eggleston, UC San Diego38

Holly Eggleston, UC San Diego39

Holly Eggleston, UC San Diego SSO-enabled rewrite proxy benefits Benefits to users Single password for campus and proxy access No user-side configuration needed Benefits to librarians Reduced cost of support Benefit to library administration Central usage statistics (“foot traffic”) 40

Holly Eggleston, UC San Diego Shibboleth + SSO enabled rewrite proxy Benefits to users Single password for campus service and proxy access No user-side configuration needed Integration with personalized vendor functionality Benefits to librarians Reduced cost of support Less IP and proxy maintenance with 80% case Permits rollout of Shib-enabled resources while keeping user experience consistent* Benefits to vendors Authoritative validation Easier breach investigation No maintenance of password information Benefit to library administration Central usage statistics (“foot traffic”) 41

Holly Eggleston, UC San Diego UCSD as case study Implemented Shibboleth (2005) Shibboleth enabled campus services Financial, employee and student systems Blogs, recreation scheduling, housing Piloting electronic resource access ( ) Shibboleth-enabled EZProxy Shibboleth-enabled electronic resources Shibboleth-enabled Cisco WebVPN (in process) Investigating ILS-managed services ILL, account management

Holly Eggleston, UC San Diego Library / Shibboleth pilot achievements Enumerated basic use cases Identified barriers to library adoption of solution Identified recommended technologies for implementation Performed component testing of recommended technologies 43

Holly Eggleston, UC San Diego Basic use cases – entry points Connecting from known URL Library A-Z Connecting from unknown URL Google Scholar, link Moving between resources SFX Serials Solutions Using Federated Search 44

Holly Eggleston, UC San Diego Basic use cases – configuration Walk-in user on library public machine Known user on library public machine Known user on campus assigned machine Known user, off-campus personal machine Known user, off-campus lockdown machine 45

Holly Eggleston, UC San Diego Licensing configuration scenarios Restricted to subset of authorized users Restricted to subset of locations 46

Holly Eggleston, UC San Diego Current issues and barriers to adoption Implementing at campuses Communication with IT Available technological expertise / technical overhead Streamlining activation process SP membership in federation SP functionality Consistency Process Seamlessness of hybrid situation Shibboleth functionality 47

Holly Eggleston, UC San Diego Features and functionality – Vendors Identifying popular resources (80% case) Shib-Enabled? InCommon membership? Developing best practices for content providers Support for the unique identifier for personalized functionality Implementation consistency WAYF appearance Login availability WAYF-less interface 48

Holly Eggleston, UC San Diego Features and functionality - Shibboleth Improvements with the unique identifier Movement of users between IdP Customized / consented release of attributes Known IP override WAYF-less interface for existing logins 49

Holly Eggleston, UC San Diego Future steps Develop and communicate feature and functionality suggestions Identify popular resources (80% case) Outreach Group configuration Pilot functional testing 50

Holly Eggleston, UC San Diego Future steps - Outreach Continued outreach to librarian groups Case studies White papers and other documents on hybrid solution Public web page 51

Holly Eggleston, UC San Diego Future steps – Group configuration Opening group to additional participants Establishing wider affiliation International federations EDUCAUSE, NISO, CNI Library organizations 52

Holly Eggleston, UC San Diego Future directions – Pilot Outlining remaining questions related to proposed solutions and conducting tests to determine answers Expanding limited pilot projects to a broader test of technology Enabling more service providers. Opening the pilot to a wider group Concurrent related projects Institutions with current federated applications 53

Holly Eggleston, UC San Diego Getting involved Informal EZProxy users, use Shibboleth for EZProxy authentication Formal Contact us 54

Holly Eggleston, UC San Diego Contact shibboleth/ 55

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.