Presentation is loading. Please wait.

Presentation is loading. Please wait.

Possibilities for Grouper in a cross/inter organizational use Andrea Biancini, Consortium GARR GN3+ F-2-F meeting Stockholm, April.

Published byAlexandra Quinn Modified over 8 years ago

Similar presentations

Presentation on theme: "Possibilities for Grouper in a cross/inter organizational use Andrea Biancini, Consortium GARR GN3+ F-2-F meeting Stockholm, April."— Presentation transcript:

1 Possibilities for Grouper in a cross/inter organizational use Andrea Biancini, Consortium GARR andrea.biancini@garr.it GN3+ F-2-F meeting Stockholm, April 29 th, 2014

2 2 Connect | Communicate | Collaborate Agenda Subtask definition and goals Major subtask activities Plan and advancements Involvement

3 3 Connect | Communicate | Collaborate Subtask definition and goals Within this task we will evaluate the introduction of Grouper for a cross/inter organizational use. Grouper will be used to manage in a centralized way (yet eventually permitting delegation): Groups of users Authorization attributes for users It provides a web interface, a CLI and a webservices interface (that has, just discovered, a VOOT plugin) Grouper will be studied in conjunction with other tools to implement advanced features in group management: for instance Grouper could be integrated with COmanage to delegate the management of authorization aspects.

4 4 Connect | Communicate | Collaborate Major subtask activities The main activities for this subtask will be: 1.Better definition of the possibilities for an authorization process within different services and communities. 2.Realization of a PoC to prove possible integrations of existing services with Grouper. 3.Documentation and dissemination of results achieved.

5 5 Connect | Communicate | Collaborate Authorization processes So far authorization in Identity Federations has been managed in either one of two opposite ways: SP based authorization: where the SP is responsible to maintain all information to be used for authorization; IdP based authorization: where the IdP is responsible to maintain the information to be used for authorization and to pass them to the SP for enforcement. A different approach may be followed (leveraging Attributes Authorities and implementing tools like Grouper) where authorization is delegated to specific systems designed for that purpose.

6 6 Connect | Communicate | Collaborate Proof of Concept To prove real use cases, three SPs will be integrated with Grouper in a Proof of Concept: A wiki application: Grouper will manage user groups for read/write access; A moodle application: Grouper will provide course list and manage students/teachers enrolment to courses; A custom application (GARRbox): Grouper will provide user groups and other authorization attributes specific to the service.

7 7 Connect | Communicate | Collaborate Dissemination During the activities a set of documents will be produced and shared. These documents will permit to share common visions and ideas thus easing the dissemination of results achieved. JRA3T1-321 Feasibility Study(due 05/14) JRA3T1-322 Architecture for discovery(due 09/14) JRA3T1-323 PoC documentation(due 12/04) JRA3T1-324 Deliverables for dissemination(due 03/15)

8 8 Connect | Communicate | Collaborate Plan and advancements 1. Study 2. Feasibility 3. Design 4. Build 5.Finalize 1.Study (started 03/2014): finalized at gaining knowledge on the tools and processes to be implemented. 2.Feasibility (end 05/2014): will produce the first deliverable and introduce the context of authorization processes. 3.Design (end 09/2014): will produce the architectural design and describe the technical choices that will be tested in the PoC. 4.Build (end 12/2014): will realize the PoC with the integration of the three SPs. 5.Finalize (end 05/2015): will produce dissemination material.

9 9 Connect | Communicate | Collaborate Involvement The subtask would *really* appreciate the involvement in the different activities of the following groups: Groups with experience on Grouper / COmanage to help in the installation and configuration of the group and attribute management system. Groups interested in experiencing the PoC and helping the definition of technical aspects and problems. Groups interested in sharing views about real authorization problems by contributing to the deliverables.

10 10 Connect | Communicate | Collaborate www.geant.net www.twitter.com/GEANTnews | www.facebook.com/GEANTnetwork | www.youtube.com/GEANTtv Connect | Communicate | Collaborate Thank you!

Download ppt "Possibilities for Grouper in a cross/inter organizational use Andrea Biancini, Consortium GARR GN3+ F-2-F meeting Stockholm, April."

Similar presentations

Moving materials from Intranet to VLE Andy Diament Penzance.

Moving materials from Intranet to VLE Andy Diament Penzance.
Achieve Benefit from IT Projects. Aim This presentation is prepared to support and give a general overview of the ‘How to Achieve Benefits from IT Projects’

Achieve Benefit from IT Projects. Aim This presentation is prepared to support and give a general overview of the ‘How to Achieve Benefits from IT Projects’
Enabling Access to Sound Archives through Integration, Enrichment and Retrieval WP1. Project Management.

Enabling Access to Sound Archives through Integration, Enrichment and Retrieval WP1. Project Management.
e-Framework Components and Responsibilities.

e-Framework Components and Responsibilities.
© 2006 IBM Corporation IBM Software Group Relevance of Service Orientated Architecture to an Academic Infrastructure Gareth Greenwood, e-learning Evangelist,

© 2006 IBM Corporation IBM Software Group Relevance of Service Orientated Architecture to an Academic Infrastructure Gareth Greenwood, e-learning Evangelist,
Analysis Stage (Phase I) The goal: understanding the customer's requirements for a software system. n involves technical staff working with customers n.

Analysis Stage (Phase I) The goal: understanding the customer's requirements for a software system. n involves technical staff working with customers n.
University of Jyväskylä – Department of Mathematical Information Technology Computer Science Teacher Education ICNEE 2004 Topic Case Driven Approach for.

University of Jyväskylä – Department of Mathematical Information Technology Computer Science Teacher Education ICNEE 2004 Topic Case Driven Approach for.
Systems Development (SD) Presentation Michael Webb IT Director for Medicaid Utah Department of Health UDOH Informatics Brownbag August.

Systems Development (SD) Presentation Michael Webb IT Director for Medicaid Utah Department of Health UDOH Informatics Brownbag August.
Widely Distributed Access Management Tom Barton University of Chicago.

Widely Distributed Access Management Tom Barton University of Chicago.
Topical Interest Groups as Communities of Practice: Strategies for Building a Community of Practice Facilitated by: PK12 Educational Evaluation TIG Evaluation.

Topical Interest Groups as Communities of Practice: Strategies for Building a Community of Practice Facilitated by: PK12 Educational Evaluation TIG Evaluation.
Cancún - Mexico, 28.05.2014 Andrea Biancini Towards a Federation as a Service From IdP in the Cloud project to FaaS.

Cancún - Mexico, Andrea Biancini Towards a Federation as a Service From IdP in the Cloud project to FaaS.
Project Overview. What? What are we trying to accomplish How? How are we going to accomplish it When? When do we need to accomplish it by.

Project Overview. What? What are we trying to accomplish How? How are we going to accomplish it When? When do we need to accomplish it by.
1 Finding Collaborators Worldwide James Werle, Univ. of Washington, Jennifer Oxenford, MAGPI/UPENN, Tim.

1 Finding Collaborators Worldwide James Werle, Univ. of Washington, Jennifer Oxenford, MAGPI/UPENN, Tim.
Work Package 6: Performance Specification Ian McCrea.

Work Package 6: Performance Specification Ian McCrea.
FINAL DEMO 4.3.2009 Apollo Crew, group 3 T-76.4115 SW Development Project.

FINAL DEMO Apollo Crew, group 3 T SW Development Project.
BfB: Supporting Collaboration with Infrastructure.

BfB: Supporting Collaboration with Infrastructure.
Feasibility Study of a Wiki Collaboration Platform for Systematic Review Eileen Erinoff AHRQ Annual Meeting September 15, 2009.

Feasibility Study of a Wiki Collaboration Platform for Systematic Review Eileen Erinoff AHRQ Annual Meeting September 15, 2009.
TF-DI Meeting 13-Aug-2015. Agenda Discovery presentation from William Miller Review of discussions at F2F Sunnyvale Interaction patterns of tech landscape.

TF-DI Meeting 13-Aug Agenda Discovery presentation from William Miller Review of discussions at F2F Sunnyvale Interaction patterns of tech landscape.
Restricted 13/14 September 2012 1 Building a Data Portal with SDMX The BIS SDMX Sandbox exercise 1 Gabriele Becker, Massimo Bruschi Bank for International.

Restricted 13/14 September Building a Data Portal with SDMX The BIS SDMX Sandbox exercise 1 Gabriele Becker, Massimo Bruschi Bank for International.
ETICS2 All Hands Meeting VEGA GmbH INFSOM-RI-1234567 Uwe Mueller-Wilm Palermo, Oct. 2008 ETICS Service Management Framework Business Objectives and “Best.

ETICS2 All Hands Meeting VEGA GmbH INFSOM-RI Uwe Mueller-Wilm Palermo, Oct ETICS Service Management Framework Business Objectives and “Best.

Similar presentations

Ads by Google