KC-ROLO Project Kidderminster College Repository Of Learning Objects Graham Mason & Ed Beddows.

Slides:



Advertisements
Similar presentations
Athens and Shibboleth ® : the choices Phil Leahy Athens Product Manager.
Advertisements

E-resources Collection Management Anna Grigson E-resources Manager.
Shibboleth and UKAMF-FEAR not as scary as it sounds! Rhys Smith Cardiff University.
Options for integrating the JANET Roaming Service (JRS) and Shibboleth Tim Chown University of Southampton (UK) JISC Access Management.
Joint Information Systems Committee 01/04/2014 | | Slide 1 Connecting People to Resources The JISC Access Management Strategy Nicole Harris Programme Manager.
PERSEUS : Portal-enabled Resources via Shibbolized End-user Security 16 May 2005JISC Core Middleware Programme Meeting, Loughborough 1 PERSEUS Project.
Eduserv Athens Federations David Orrell Eduserv Athens Technical Architect.
FAME-PERMIS Project University of Manchester University of Kent London, July 2006.
College An insight Into the College VLE Graham Mason
Issues of collaborating in a Shibboleth FE/HE trust environment Graham Mason KC-ROLO.
Next Generation Athens Services Ed Zedlewski UK e-Science Town Meeting, London, 11 April 2005.
Supporting education and research JISC ‘Accessing the Future’ Addressing the needs of Further Education and smaller institutions Nicole Harris, JISC Programme.
KC-ROLO Project Kidderminster College Repository Of Learning Objects Graham Mason & Ed Beddows.
Which approach? EcosystemTower. The Tower Aggregating content from everywhere; Huge centralised metadata: – Authoritative; – Always up to date; – Complete.
Joint Information Systems Committee Connecting People to Resources Federated Access Management within the UK Nicole Harris Senior Services Transition Manager,
JISC Metaleth Project Athens, Shibboleth and the University of Bristol 29 th January 2007.
Joint Information Systems Committee 19/05/2015 | | Slide 1 Connecting People to Resources The UK Access Management Federation Nicole Harris Programme Manager.
Joint Information Systems Committee 19/05/2015 | | Slide 1 Voyage of the UK JISC Federation: Shibbolising the UK’s Research, Higher and Further Education.
Copyright JNT Association 20051Optional Copyright JNT Association Joining the UK Access Management Federation 4th April.
1 Issues in federated identity management Sandy Shaw EDINA IASSIST May 2005, Edinburgh.
Beispielbild Shibboleth, a potential security framework for EDIT Lutz Suhrbier AG Netzbasierte Informationssysteme (
Joint Information Systems Committee 04/06/2015 | | Slide 1 Mark Williams Services Outreach, JISC federated access management London.
Copyright JNT Association 20051OptionalCopyright JNT Association 2007 Overview of the UK Access Management Federation Josh Howlett.
Case Study: Newcastle University
Iamsect.ncl.ac.u k IAMSECT Inter-institutional Authorisation Management to Support eLearning with reference to Clinical Teaching Core Middleware Programme.
Shibboleth access management: a replacement for Athens and more? Mark Norman and Christian Fernau OUCS 21 June 2007.
Educause 2006, Dallas TX What does a University need from Access Management? John Paschoud InfoSystems Engineer, LSE Library London School of Economics.
Developments in Access and Identity Management Phil Leahy – Athens Product Manager.
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
Athens Building Communities Ed Zedlewski & Lyn Norris UKSG, Warwick, April 2002.
Implications for UK infrastructure No more dependency on the VERY LARGE centralised database of Athens Need for implementation of a national WAYF service.
Australian Access Federation Robert Hazeltine Identity and Access Management Enterprise Systems Office.
what is contacts? In-contacts is an online contacts database designed from the ground up to be compatible with modern business needs.
PERSEU S : Portal-enabled Resources via Shibbolized End-user Security 3 May 05Spring 2005 Internet2 Member meeting 1 News from the ‘misty’ Albion: Shibboleth.
Supporting further and higher education AA(A) – What does it mean to the service provider? Alan Robiette, JISC Development Group.
New Developments in Authentication and Access Management Alan Robiette JISC Development Group JISC-NSF-DLI2 Meeting, 2002.
Joint Information Systems Committee 18-Jul-2006 | | Slide 1 Change Management for Libraries Session B, 11: :00 John Paschoud and Peter Spring London.
UK e-Science All Hands Meeting, September 2007 The GLASS Project: Supporting Secure Shibboleth-based Single Sign-On to Campus Resources John Watt (
Single Sign-On Multiple Benefits via Alaska K20 Identity Federation 20 May 2011 BTOP Partner Meeting Anchorage, Alaska 20 May 2011 BTOP Partner Meeting.
Copyright JNT Association 2005Copyright JNT Association An Introduction to Access Management and the UK Federation Simon Cooper.
Internet2 – InCommon and Box Marla Meehl Colorado CIO 11/1/11.
I2Q & WMnet Pilot Presented by Jason Rousell – i2Q Jay Neale - i2Q.
Welcome slide. From innovation to implementation to sector change: the view from HEFCE JISC Innovation Forum Keele University, 15 July 2008 Dr John Selby.
Michael Ghens Information Systems Specialist Santa Barbara City College.
Shibboleth for Real Dave Kennedy
Presented by: Presented by: Tim Cameron CommIT Project Manager, Internet 2 CommIT Project Update.
Empowering people-centric IT Unified device management Access and information protection Desktop Virtualization Hybrid Identity.
Portal-based Access to Advanced Security Infrastructures John Watt UK e-Science All Hands Meeting September 11 th 2008.
MAT U M A T U Middleware Assisted Take-Up Service For JISC Funded Early Adopters.
Federated Access Management The Motherwell Experience Carole Gray.
Shibboleth What is it and what is it good for? Chad La Joie, Georgetown University.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
UK Access Management Federation Matthew Dovey Programme Director, Digital Infrastructures (Research) 10 June 2011 CERN.
New Developments in Access Management: Setting the Scene Alan Robiette JISC Development Group JISC-CNI Conference, June 2002.
Shibboleth at USMAI David Kennedy Spring 2006 Internet2 Member Meeting, April 24-26, 2006 – Arlington, VA.
The UK Access Management Federation John Chapman Project Adviser – Becta.
Identity Management and Enterprise Single Sign-On (ESSO)
Shibboleth at USMAI David Kennedy Spring 2006 Internet2 Member Meeting, April 24-26, 2006 – Arlington, VA.
Shibboleth Use at the National e-Science Centre Hub Glasgow at collaborating institutions in the Shibboleth federation depending.
INTRODUCTION TO IDENTITY FEDERATIONS Heather Flanagan, NSRC.
B2access.eudat.eu B2ACCESS User Training How to register with B2ACCESS Version 1 February 2016 This work is licensed under the Creative Commons.
Community Sign-On and BEN. Table of Contents  What is community sign-on?  Benefits  How it works (Shibboleth)  Shibboleth components  CSO workflow.
Single Sign On Single sign on, more than a single step. Robert Stockton,
LIGO Identity and Access Management
Data and Applications Security Developments and Directions
UK Access Management Federation
UK Federation 101 Ian A. Young EDINA, University of Edinburgh (and the UK Federation) Internet2 Fall Member Meeting, 7 Dec Shibboleth Development.
Supporting Institutions Towards a Shibbolized Infrastructure
KC-ROLO Project Kidderminster College – Repository Of Learning Objects
Protecting Privacy with Federated AA
Presentation transcript:

KC-ROLO Project Kidderminster College Repository Of Learning Objects Graham Mason & Ed Beddows

Implementing Shibboleth at Kidderminster College Nearly 3 years ago we embarked on a JISC Core Middleware Shibboleth project Why? because we adopted an open source VLE and other technologies within the College Within the College we have always had a strong open source team JISC advocates open source technology

What is “Shibboleth” It’s “Middleware”

What will be the benefits of Shibboleth? Users will have a single sign-on using an institutional ID and password for a wide range of resources, as well as the assurance that their personal data will not be disclosed to third parties. LRC will be free of the burden of user name and password administration, and will have new tools for managing licenses and service subscriptions. IT Managers will have more control of the access management process, i.e. centralised access management using the college Active Directory/LDAP store Institutions will have a single service to meet the requirements of e-learning, e-research and library-managed resources.

Started with an IdP on Linux Box Although the Internet2 documentation was accurate in its description of how Shibboleth works The technical guidelines were generic and not specific, this was apparent in creating an “SP” The Project “Birth of KC-ROLO”

Get the Documentation in place Our main ally was documentation Log progress at each step With pre-written scripts to download Continually updating scripts

KC-ROLO Service Provider Used different platforms to gain experience in each one Repository SP on a Windows 2003 Box VLE’s SP on a Linux Box

How we’re using Shibboleth To share internal VLEs with different sections To share VLEs with partner institutions To share learning objects with partner institutions via an Open Source repository Contains learning objects, NLN and custom materials Search front end protected by shibboleth, no code change Shibbolized repository submitter, only members of Kidderminster College with the “Staff” attribute can submit.

Without Shibboleth

With Shibboleth

Benefits to the Users No multiple logins to put them off Access to resources at other sites provides greater choice of materials Students & staff can collaborate with members of other institutions

Federation

Federated Access Management?

What is Federated Access Management? Federated Access Management builds a trust relationship between Identity Providers (IdP) and Service Providers (SP). It devolves the responsibility for authentication to a user’s home institution, and establishes authorisation through the secure exchange of information (known as attributes) between the two parties.

There will be three options Become a full member of the UK Access Management Federation, using community-supported tools. Become a full member of the UK Access Management Federation, using tools with paid-for support. Subscribe to an ‘outsourced Identity Provider’ to work through the Federation on your behalf, such as continued use of Athens with the gateways.

A little confusing? What does this mean to the college? Option 1. College will have a server in-house installed with Shibboleth IdP (Identity Provider) and linked to their Active Directory or LDAP store, supported by the College ICT Services. Options 2. College purchases the server, (this is were we have been active in carrying out this service for college’s) –install Shibboleth –link to your AD/LDAP store, provide Technical support and documentation. Options 3. College will pay Athens a subscription cost to external supplier and an internal administration role.

Demo

Questions?