PubCookie Strategy and Tactics Mike Conlon Director of Data Infrastructure University of Florida.

Slides:



Advertisements
Similar presentations
Credentialing, Levels of Assurance and Risk: What’s Good Enough Dr. Michael Conlon Director of Data Infrastructure University of Florida.
Advertisements

Identity Management at the University of Florida Mike Conlon, Director of Data Infrastructure University of Florida, Gainesville, Florida Background Identity.
MyProxy: A Multi-Purpose Grid Authentication Service
Inter-Institutional Registration UNC Cause December 4, 2007.
Planning: Project Readiness and Costs Mike Conlon Director of Data Infrastructure University of Florida Copyright Michael Conlon, This work is the.
Prepared by Dept. of Information Technology & Telecommunication, May 1, 2015 DoITT Identity Management Security, Provisioning, Authentication.
Directories at the University of Florida Mike Conlon Director of Data Infrastructure University of Florida.
Copyright Dickinson College This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial,
SWIM WEB PORTAL by Dipti Aswath SWIM Meeting ORNL Oct 15-17, 2007.
Presented by: Mark Hendricks
May 22, 2002 Joint Operations Group Discussion Overview Describe the UC Davis Security Architecture Describe Authentication Efforts at UC Davis Current.
UPortal.Cornell Using uPortal to integrate disparate campus systems Jon Atherton, Cornell Information Technologies
Integrating Oracle Collaboration Suite into the Identity Management Infrastructure Dan Malone Cal Poly, San Luis Obispo Integrating.
Identity and Access Management: Strategy and Solution Sandeep Sinha Lead Product Manager Windows Server Product Management Redmond,
Peter Deutsch Director, I&IT Systems July 12, 2005
UPortal Security and CAS Susan Bramhall ITS Technology & Planning Yale University.
May 10, 2001An Overview of the Princeton University Web - Portals 1 Enterprise Portals  What’s a portal? –Web page customized for a particular user. E.g.
Identity and Access Management IAM. 2 Definition Identity and Access Management provide the following: – Mechanisms for identifying, creating, updating.
Authentication Systems and Single Sign-On (SSO) David Orrell, Eduserv Athens 1st EuroCAMP, 2-4 March 2005, Turin, Italy.
Identity Management: The Legacy and Real Solutions Project Overview.
Esri UC2013. Technical Workshop. Technical Workshop 2013 Esri International User Conference July 8–12, 2013 | San Diego, California Building Secure Applications.
GatorAid: Identity Management at the University of Florida Mike Conlon Director of Data Infrastructure
EDUCAUSE April 25, 2006Enforcing Compliance with Security Policies … Enforcing Compliance of Campus Security Policies Through a Secure Identity Management.
Single Sign-on Integration (SSI) MSIT 458 – Information Security Project Part 2 Prepared for Professor Yan Chen Prepared by Team Triad Radu Bulgaru Moniza.
Active Directory at the University of Michigan Data Population and Kerberos Interoperability MaryBeth Stuenkel LAN/NOS/Groupware Services.
Scenario covered in this presentation Separate credential from on- premises credential Authentication occurs via cloud directory service Does not.
Middleware Deployment Issues Jack Suess, CIO, UMBC
AAI with simpleSAMLphp
Unified Student-Centric Authentication and Authorization Nathan Wilder Special Assistant - Technology Office of the CIO.
USCGrid A (Very Quick) Introduction To PubCookie
SSL, Single Sign On, and External Authentication Presented By Jeff Kelley April 12, 2005.
GatorLink Password Management Policy March 31, 2004.
Using AS 10g with EBS What are the Benefits of Integrating AS 10g with Oracle Applications?
E-Business Activities at the University of California, Berkeley Barbara H. Morgan Director, Strategic Technology Planning Common Solutions Group Tucson,
USERS Implementers Target Communities NMI Integration Testbed The NMI Integration Testbed NMI Participation Developed and managed by SURA Evaluate NMI.
UCLA Enterprise Directory Identity Management Infrastructure UC Enrollment Service Technical Conference October 16, 2007 Ying Ma
NSF Middleware Initiative Renee Woodten Frost Assistant Director, Middleware Initiatives Internet2 NSF Middleware Initiative.
Sudha Iyer Principal Product Manager Oracle Corporation.
CAS Lightning Talk Jasig-Sakai 2012 Tuesday June 12th 2012 Atlanta, GA Andrew Petro - Unicon, Inc.
Single Sign-On
Shibboleth for Local Attribute Delivery 21 June 2007.
Shibboleth: An Introduction
John Douglass, Developer Ron Hutchins, Dir. Engineering Herbert Baines, Dir. InfoSec.
Single Sign-On across Web Services Ernest Artiaga CERN - OpenLab Security Workshop – April 2004.
UIT Campus Systems & Infrastructure CAS Web Authentication.
January 9, 2002 Internet2 WebISO Project RL "Bob" Morgan, University of Washington.
Single Sign-On in the Danish Educational Sector Per Thorboll Deputy director UNI-C.
UMBC’s WebAuth Robert Banz – UMBC
Sakai Authentication and Directory Architecture for 1.0 and Beyond A response to an by Albert Wu and Thomas Bush 8/28/2004 Charles Severance.
Campus Experience: Pubcookie University of Alabama at Birmingham Academic Computing Zach Garner.
Shibboleth: OSU Early Adoption Scenarios Scott Cantor April 10, 2003 Scott Cantor April 10, 2003.
February, TRANSCEND SHIRO-CAS INTEGRATION ANALYSIS.
1 Pinnacle Telephone Billing System Upgrade Open Forum I February 27, 2009.
Shibboleth Update January, 2001 Ken Klingenstein, Project Director, Internet2 Middleware Initiative Chief Technologist, University of Colorado at Boulder.
WebISO, Single Sign-On & Authorization General Overview Shelley Henderson Project Manager, Grid Software USC Information Services Copyright.
Introduction to Terra Dotta Applications Integration with Campus Data Systems for institutions beginning their software implementation.
ADFS - Does it Still have a Place? Fitting into the EMS puzzle Frank C. Drewes III 2016 Redmond Summit | Identity.
Office of Information Technology GT Identity and Access Management JA-SIG CAS project (introducing login.gatech.edu) April 29th,
L’Oreal USA RSA Access Manager and Federated Identity Manager Kick-Off Meeting March 21 st, 2011.
The LemonLDAP::NG project
Secured Services Best Practices on ArcGIS for Server Patrick Jackson & Thomas Noble.
New Developments in Central Directory Service and Account Provisioning Dan Menicucci Enterprise Architect - University of Pittsburgh.
CAS and Web Single Sign-on at UConn
Welcome to the 20th Anniversary of the IUG
Web Portal Project.
Mike Conlon Director of Data Infrastructure October 5, 2005
ESA Single Sign On (SSO) and Federated Identity Management
Identity Management at the University of Florida
Mike Conlon Director of Data Infrastructure October 5, 2005
Use of MyProxy for the FusionGrid
Presentation transcript:

PubCookie Strategy and Tactics Mike Conlon Director of Data Infrastructure University of Florida

Six Directory Systems  Registry (authoritative source)  LDAP  Kerberos (GatorLink)  PeopleSoft  AD  NDS

Existing GL Auth  GL Auth provides web sign-on using an identical architecture to PubCookie  Locally written  Authentication modules for Apache  In use at many sites around UF  Walk-up Internet Port Authenticator  Wireless Authentication

Options for Web Sign On  GL Auth We know it. It works  PubCookie You know it. It works  PeopleSoft Have other sites consume the PeopleSoft logon credential

Why PeopleSoft?  Will become the authoritative source for directory information (Registry to be migrated to Campus Community, 7/2004)  Will become the single sign-on place for enterprise applications – Finance, HR, Student systems, Library, Portal, WebCT, Data Warehouse, …

The UF Web Portal – my.ufl.edu  Two strategic goals: 1.Provide a single point of entry for authenticated and authorized access to UF information resources 2.Provide a single delivery mechanism for time sensitive, role-based information for the UF community Portal was launched 3/31/ ,000 authorized users via Kerberos

Decision Points  Portal strategy emphasizes sign on at the portal – maximizes the synergy of the access point for applications and the access point for information  At the portal, we create a GL Auth Cookie, PubCookie in addition to the PeopleSoft cookie  PeopleSoft has password management capability built-in  An Apache module for the PeopleSoft cookie?

Current PubCookie Efforts  Upgrade the code to support non-SSL transactions  Evaluate use of PubCookie in the enterprise environment  Evaluate PubCookie production infrastructure requirements  Follow the WebISO effort, potentially contribute GL Auth code, WIPA

Authentication Road Map  Mar – Admin w/ GL Auth, launch portal  Apr – ISIS w/ GL Auth, Analysis -> Choose cookie from among GL Auth, PubCookie, PeopleSoft  May – Implement cookie in test, begin portal upgrade analysis  Jun – Analysis, design password processes, upgraded portal in test  Jul – change password mgt, convert ISIS, WebCT, Admin  Aug – relaunch portal w/ password mgt and cookie apps

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.