Some thoughts on Authentication in general….and Shibboleth in particular James Mouw Asst. Director for Technical and Electronic Services The University.

Slides:

Advertisements

Similar presentations

EBSCOadmin Authentication

Advertisements

Eduserv Athens Federations David Orrell Eduserv Athens Technical Architect.

EVERY CONNECTION has a starting point. EVERY CONNECTION has a starting point. WorldCat Navigator - Authentication Library Hosted Navigator EZproxy and.

OhioNET EZProxy Service

Access & Identity Management “An integrated set of policies, processes and systems that allow an enterprise to facilitate and control access to online.

EndNote X7 (17) Tutorial Medical Center Library Frank Davis, MSLS Research & Education Division Updated

The University of Illinois at Urbana-Champaign. The Team Ed Krol – Asst Dir. Computing & Communications Bill Mischo – Engineering Librarian Mike Grady.

Access management for repositories: challenges and approaches for MAMS James Dalziel Professor of Learning Technology and Director, Macquarie E-Learning.

Building the Future: Millennium’s Relationship with Campus Systems and Services John Culshaw Faculty Director for Systems University of Colorado at Boulder.

Christopher Lewis - EBSCO Information Services Robert Jacobs - Swets How will subscription agents help you manage your e-resources in a constantly changing.

 To publish information for global distribution, one needs a universally understood language, a kind of publishing mother tongue that all computers may.

ALCTS Serials Standards Forum ALA 2004 Oliver Pesch EBSCO Information Services

John Ben DeVette Asia General Manager Vice President 19 October, 2005 EBSCO Information Services Web Initiatives: The New Online Interface for Libraries,

UC Irvine’s Pre-Shib Attribute Setup PH / QI Directory Provides Authoritative Attribute Store –Had both Faculty / Staff and Student Information UCI’s Campus.

UCLA’s Shibboleth Plan Shibboleth is an integral part of UCLA’s Enterprise Directory & Identity Management Infrastructure (EDIMI) Project Integrate with.

Open Proxy Servers Kevin Guthrie ALA, January 2003.

New technologies in the libraries Stu Baker Library Management Systems Northwestern University Library.

Information Search Tutorial Information Systems for Management1 Tutorial: Information Search.

Library integrated system -Aleph Fang Peng Stony Brook University.

Shibboleth: EBSCOhost implementation Lech Wojtowicz Director of Software Development EBSCO Publishing Access 2003 October 3, 2003.

SIMI: ISO Perspective Al ISO CSU Northridge

Widely Distributed Access Management Tom Barton University of Chicago.

We use EZProxy, a proxy server software recently bought by OCLC. Proxy server.

M AKING E - RESOURCE ACCESSIBLE FROM ONLINE CATALOG *e-books *serials Yan Wang Senior Librarian Head of Cataloging & Database Maintenance Central Piedmont.

Managing Information UT November 13-14, 2008 Campus Identity and Access Management Services.

Credential Provider Operational Practices Statement CAMP Shibboleth June 29, 2004 David Wasley.

Shibboleth: Improving Access for Library Users InCommon Library/Shibboleth Project Holly Eggleston, UC San Diego.

University of Kentucky Proxy Service Presentation By Kelly Vickery

Australian Access Federation Robert Hazeltine Identity and Access Management Enterprise Systems Office.

3 Nov 2003 A. Vandenberg © Second NMI Integration Testbed Workshop on Experiences in Middleware Deployment, Anaheim, CA 1 Shibboleth Pilot Local Authentication.

Single Sign-On Offerings Dustin MacIver EBSCO Publishing 6/4/2011.

Link Resolvers: An Introduction for Reference Librarians Doris Munson Systems/Reference Librarian Eastern Washington University Innovative.

Exploring InCommon Getting Started with InCommon: Creating Your Roadmap.

NELLI - INFORMATION RETRIEVAL PORTAL. NELLI Information retrieval portal National ELectronic Library Interface One interface to all material –Licensed.

The Winding Road: WorldCat Local as Discovery Tool at the University of South Florida Libraries Monica Metz-Wiseman Coordinator of Electronic Collections.

Helsinki Institute of Physics (HIP) Liberty Alliance Overview of the Liberty Alliance Architecture Helsinki Institute of Physics (HIP), May 9 th.

EndNote X4 (14) Tutorial Medical Center Library Frank Davis, MSLS Research & Education Division Updated

UNESCO ICTLIP Module 1. Lesson 61 Introduction to Information and Communication Technologies Lesson 6. What is the Internet?

Bringing the Library to You: Integrating Library Resources into Online Classrooms ACRL/CNI/EDUCAUSE Joint Virtual Conference - Innovate and Motivate: Next.

The I-Trust Federation: Federating the University of Illinois Keith Wessel Identity Management Service Manager University of Illinois at Urbana-Champaign.

authenticated networked guided environment for learning - secure integration of learning environments with digital libraries - Current.

Shibboleth for Real Dave Kennedy

Libraries & Learning Technologies Web Access Management: The AUC Experience Casey Grimmer, Head Daniel Blucker, eResources Research & Information Services.

David Kennedy, UMD Shibboleth and Library Resources Internet2 Library/Shibboleth Project.

Social Identity Working Group Steve Carmody. Agenda Intro to Using Social Accounts Status and Recent News –Current UT Pilot –Current InCommon Pilot with.

CBSOR,Indian Statistical Institute 30th March 07, ISI,Kokata 1 Digital Repository support for Consortium Dr. Devika P. Madalli Documentation Research &

Shibboleth at Columbia Update David Millman R&D July ’05

Internet2 Middleware Initiative Shibboleth Ren é e Shuey Systems Engineer I Academic Services & Emerging Technologies The Pennsylvania State University.

Holly Eggleston, UCSD Shibboleth and Library Resources InCommon Library/Shibboleth Project.

US of A and A Activities Ken Klingenstein, Director Internet2 Middleware Initiative.

Shibboleth: Early Experience at OSU Scott Cantor October 28, 2002 Scott Cantor October 28, 2002.

Shibboleth: OSU Early Adoption Scenarios Scott Cantor April 10, 2003 Scott Cantor April 10, 2003.

Shibboleth at USMAI David Kennedy Spring 2006 Internet2 Member Meeting, April 24-26, 2006 – Arlington, VA.

Shibboleth: Molecules, Music, and Middleware. Outline ● Terms ● Problem statement ● Solution space – Shibboleth and Federations ● Description of Shibboleth.

Holly Eggleston, UCSD Beyond the IP Address: Shibboleth and Electronic Resources InCommon Library/Shibboleth Project.

Exploring Access to External Content Providers with Digital Certificates University of Chicago Team Charles Blair James Mouw.

Jakob Gadegaard Bendixen, Shibboleth protected proxy servers a case study from the Danish library sector.

Shibboleth at USMAI David Kennedy Spring 2006 Internet2 Member Meeting, April 24-26, 2006 – Arlington, VA.

Marshalling the Troops - Tools that Facilitate the Management of Electronic Resources Yvonne Desmond, Faculty Librarian Brian Widdis, Assistant Librarian.

Bibliographic Record Description of a book or other library material.

Introduction to Terra Dotta Applications Integration with Campus Data Systems for institutions beginning their software implementation.

Leveraging Campus Authentication to Access the TeraGrid Scott Lathrop, Argonne National Lab Tom Barton, U Chicago.

Shibboleth and eLibrary

David Millman—Columbia January 2005

Single Sign-On Led by Terrice McClain, Jen Paulin, & Leighton Wingerd

Shibboleth Project at GSU

Linking Users, Resources, & Data Driven Decisions with OpenAthens

Open Proxy Servers Kevin Guthrie ALA, January 2003

JSTOR as a Shibboleth Target

Shibboleth Deployment Overview

Presentation transcript:

Some thoughts on Authentication in general….and Shibboleth in particular James Mouw Asst. Director for Technical and Electronic Services The University of Chicago Library

What we believe Shibboleth is one solution for authentication, it is not now and likely never will be the only solution Shibboleth has many applications beyond library resources

Our Environment Library controls resources and access mechanisms –Full text and indexing resources –Catalog records –OpenURL, Federated Search –Persistent URL mechanism with redirects –Library Web Page –Various servers, AD for library machines –Public work stations

Our Environment Campus IT controls –The plumbing –The campus identity management –Security –Remote access Modem pool, web-based access, VPN, [remote desktop], connectivity package –Basic software adoption – which browsers to support, etc. –The Proxy server(s)

Our planning process Joint work group – campus IT and library staff Meeting bi-weekly since fall 2004 Originally planned to have two groups, one for EXProxy and another for Shib – later merged into one task

Brief history First library e-resources ~1995 First proxy server (Squid) ?? (before 1999) –Browser specific, not transportable, didn’t work with many products Move to EZProxy – January 2006 (URL rewriting technology) –Main issue is links we don’t/can’t control –Fundamental step toward standard operating procedures Squid to be retired – Summer 2006 Shibboleth in test

Status of Shibboleth Planning begins fall 2004 Membership in InCommon Shibboleth v.1.3 IdP production April 2006 Campus ID management in place –Single directory with attributes Bulk of our time spent on new style of URL management and implications

Trialing Phase Trial underway with Ebsco Publishing Plans for OCLC, JSTOR and others

Beyond Library Resources Use shib internally for all logical authentication –EZProxy –Restricted campus files – based on LDAP attributes Single signon (Nirvana?)

Next steps Tom Barton: –Shib just goes in our bag of tricks – for vendors offering ASP-based services, for grid computing activities.