Using Enterprise Logins in Portal for ArcGIS via SAML Greg Ponto & Tom Shippee.

Slides:



Advertisements
Similar presentations
Agenda AD to Windows Azure AD Sync Options Federation Architecture
Advertisements

Esri UC2013. Technical Workshop. Technical Workshop 2013 Esri International User Conference July 8–12, 2013 | San Diego, California Building Secure Applications.
SIM205. (On-Premises) Storage Servers Networking O/S Middleware Virtualization Data Applications Runtime You manage Infrastructure (as a Service)
Esri International User Conference | San Diego, CA Technical Workshops | Intro to ArcSDE for SQL Server Tony Wakim & Jim Gough July , 2011.
Scenario covered in this presentation Separate credential from on- premises credential Authentication occurs via cloud directory service Does not.
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
Identity Management in Education. Welcome Scott Johnson, NetProf, Inc. Creator of OmnID Identity Management for Education
5 | Microsoft Confidential 6 | Microsoft Confidential.
Troubleshooting Replication and Geodata Services
External Identity and Authorization in GENI. Topics Federated identity and virtual organizations ABAC Creating and transporting attributes.
Single Sign-On Multiple Benefits via Alaska K20 Identity Federation 20 May 2011 BTOP Partner Meeting Anchorage, Alaska 20 May 2011 BTOP Partner Meeting.
Network Analysis with Python
Integrating with UCSF’s Shibboleth system
ArcGIS for Server: Reference Implementations
Geospatially Enabling the Intelligence Collector David Attaway Natalie Feuerstein Phil Suarez.
ArcGIS Server and Portal for ArcGIS An Introduction to Security
ArcGIS Workflow Manager: Tasks and Enterprise Workflows Michael Broadbent.
Creating Apps Using ArcGIS Online Templates
Publishing to ArcGIS for Server
Enabling High-Quality Printing in Web Applications
Leveraging ArcGIS Online Elevation and Hydrology Services
Esri Defense Mapping: Cartographic Production
Portal for ArcGIS An Introduction
Esri Roads and Highways: An Introduction to Roadway Reporter
Drive Your Order Management with GIS Optimizing Delivery of Service to Location Rodney Conger – Dave Lewis.
ArcGIS Server for Administrators
Esri Production Mapping: Automate Map Production With ArcGIS Workflow Manager Joe Sheffield.
Navigator for ArcGIS – Tech Preview Mark Bockenhauer Scott Sandusky.
Esri UC2013. Technical Workshop. Technical Workshop 2013 Esri International User Conference July 8–12, 2013 | San Diego, California Geodatabase Administration:
Using the Operations Dashboard for ArcGIS Jay Chen / Tif Pun.
Esri UC 2014 | Technical Workshop | ArcGIS Online: An Introduction and Overview Ray Bunn Andrew Hendrickson Tim Oliver, Horry County Paul Ross.
Network Analyst in ArcGIS Pro Scott Sandusky. Network Analyst in ArcGIS Pro This session covers how to use Network Analyst in ArcGIS Pro. It will also.
ArcGIS Workflow Manager: Getting Started with Out-of-the-Box Templates Michael Broadbent.
Extend the Operations Dashboard with Custom Widgets (and more)
Working with Feature Services Gary MacDougall Russell Brennan.
Getting the most out of ArcMap Jack Horton & Jorge Ruiz-Valdepeña.
Extending the Operations Dashboard
- NCSU project goals and requirements - Adoption Drivers - Current challenges and pain points - Identacor at NCSU - Identacor Features - NCSU Key Benefits.
Collector for ArcGIS: Tips and Tricks Morgan Zhang Li Lin.
Editing & Maintaining Parcels with ArcMap
Esri UC 2014 | Demo Theater | Using ArcGIS Online App Logins in Node.js James Tedrick.
Esri UC2013. Technical Workshop. Technical Workshop 2013 Esri International User Conference July 8–12, 2013 | San Diego, California ArcGIS for Law Enforcement:
Combining ArcGIS for Server & ArcGIS Online Julia Guard and Matt Monson.
Optimizing Your JavaScript App for Performance Lloyd Heberlie Dasa Paddock Rene Rubalcava.
Developing Cross Platform Apps with the ArcGIS Runtime SDK for Qt
Make Mobile Work For You Dave Lewis. Why Mobile GIS? Key Business Drivers for Field Operations Empowering Field Operations with Data Replace paper maps.
Esri Roads and Highways: Using Intersections to Locate Event Data Nathan Easley.
GeoPlanner for ArcGIS Configuring for Use in Your Organization Robert Stauder / Joe Liao.
Slavko Kukrika MVP Connect Windows 10 to the Cloud – Cloud Join.
Agenda  Microsoft Directory Synchronization Tool  Active Directory Federation Server  ADFS Proxy  Hybrid Features – LAB.
Sharing Maps and Layers to Portal for ArcGIS Melanie Summers, Tom Shippee, Ty Fitzpatrick.
Secured Services Best Practices on ArcGIS for Server Patrick Jackson & Thomas Noble.
ArcGIS for Server Security: Advanced
Access Policy - Federation March 23, 2016
Using Your Own Authentication System with ArcGIS Online
Federation made simple
Configuring Geocoding for Portal for ArcGIS and ArcGIS Online
Prime Service Catalog 12.0 SAML 2.0 Single Sign-On Support
ArcGIS for Server: What’s New
Shankar Chandrasekaran
Office 365 Identity Management
Best Practices: Authoring Maps for Field Use
Combining ArcGIS for Server & ArcGIS Online
ModelBuilder – Getting Started
Geocoding with ArcGIS Pro: Getting Started
Authoring Effective Maps For Collector
Geocoding with ArcGIS Desktop: An Introduction
ArcGIS Online Steps for Success A best practices approach
Getting Started With LastPass Enterprise
Hosting Geodesign and Analysis Services in Your Portal for ArcGIS
Presentation transcript:

Using Enterprise Logins in Portal for ArcGIS via SAML Greg Ponto & Tom Shippee

Session Agenda Introduction to SAML Configuring SAML use case Final thoughts… What we will cover…

What is… The Holy Grail for Security?

Why is single sign-on (SSO) so important? Everyone benefits…! Administrators: - One set of users to manage - More robust security Users: - One set of credentials to remember - Single sign-on experience Developers: - Don’t have to reinvent security - Leverage more advanced security options

Where does SAML fit into the SSO story? Enables… - Remote WAN authentication via HTTP - Users can come from a variety of enterprise stores It is the Security Assertion Markup Language - Not a specific solution - Provides a framework for remote authentication - Highly flexible – works with a wide variety of apps Popular - Lots of SAML solutions out there - Expanding security framework

SAML use cases for ArcGIS portals ArcGIS Online - Leverage existing enterprise user account in the cloud. - Only single sign-on option Portal for ArcGIS - Allow both enterprise (staff) and built-in access (vendors) - Provide access for users from multiple domains in an AD forest Leveraging enterprise users via HTTP authentication… Built-in accounts + SAML Enterprise Built-in accounts + SAML Enterprise Anonymous Citizens Vendors Employees Portal for ArcGIS Windows AD

How does SAML authentication work? Who are the players and how do they interact? Service Provider (SP): Secured application (e.g., Portal for ArcGIS) Identity Provider (IdP): Authentication app (e.g., AD FS) User: Needs to gain application access User SAML IdP AD FS Application SP ArcGIS Online Portal for ArcGIS 1) Initial service request 2) Redirect to IdP 3) IdP authentication 4) Return SAML token 5) SAML token allows access ArcGIS Server

How is SAML configured? You must establish a trust… SAML IdP AD FS Application SP Portal for ArcGIS Get Service Provider Metadata from Portal Configure IdP to Trust Portal Get Federation Metadata from IdP Configure Portal to Trust IdP Define enterprise admin IdP Federation Metadata Administrator SP Metadata

Demo Configure SAML in Portal for ArcGIS

Security best practices & tips Important details that close security holes… Portal settings to enable or disable… - SSL only - Anonymous access - Auto account creation from enterprise login - Create built-in accounts at login Admin user accounts - Remove or demote portal admin account - Add other built-in accounts (customers/vendors)

Getting outside help… Security Architecture Services - Review - Guidance - Optimization Contact the Security Standards & Architecture team - for more info When should you call Esri Professional Services…? Get It Done Right with Esri Professional Services Prioritized Guidance Verbal Assessment System Scans Standards Alignment Workshop Observations

Thank you… Please fill out the session survey in your mobile app Select Technical Workshop in the Mobile App - Use the Search Feature to quickly find this title or presenter name Click “Technical Workshop Survey” Answer a few short questions and enter any comments

Questions? Other security sessions to checkout…  Enterprise GIS: Security Strategy - Thursday, 23 Jul 2015, 3:15pm - 4:30pm - Location: Ballroom 06 E  ArcGIS Server and Portal for ArcGIS: An Introduction to Security - Thursday, 23 Jul 2015, 1:30pm - 2:45pm - Location: Room 04  ArcGIS Server: Advanced Security - Wednesday, 22 Jul 2015, 3:15pm - 4:30pm - Location: Room 03 - Thursday, 23 Jul 2015, 3:15pm - 4:30pm - Location: Room 04  ArcGIS Online: A Security, Privacy, and Compliance Overview - Wednesday, 22 Jul 2015, 10:15am - 11:30am - Location: Room 17 B

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.