Presentation is loading. Please wait.

Presentation is loading. Please wait.

UCTrust Integration for UC Grid David Walker University of California, Davis ucdavis.edu Kejian Jin University of California, Los Angeles kjin.

Published byRose Griffin Modified over 8 years ago

Similar presentations

Presentation on theme: "UCTrust Integration for UC Grid David Walker University of California, Davis ucdavis.edu Kejian Jin University of California, Los Angeles kjin."— Presentation transcript:

1 UCTrust Integration for UC Grid David Walker University of California, Davis DHWalker @ ucdavis.edu Kejian Jin University of California, Los Angeles kjin @ ats.ucla.edu

2 Overview Vision Background on UCTrust Existing Registration Process New Registration Process Technology Integration Demonstration

3 Vision UC Grid will become the infrastructure linking high-performance computing resources within UC. These resources will be used by all members of the community. –100,000s of users! Very few (1,000s? 100s?) of these people will be programming. Nearly all will be using canned applications. That is, we need an extremely efficient user registration process for pool users.

4 UCTrust Federation of “all” UC community members (faculty, staff, student, affiliates) Fully integrated into InCommon, the national federation of university community members Relies on trust that each campus can properly identify its own community members and provide information about them. Protocol is encrypted and enables mutual authentication of both service and identity providers http: //www.ucop.edu/ir/itlc/uctrust

5 Existing Registration Process 1.An end-user requests a UC Grid login via the UC Grid portal. 2.If this is a request for a Cluster User login, the cluster administrator is asked to approve the request. 3.The campus grid portal administrator is asked to approve the request. 4.The UC Grid portal finalizes the registration and creates the user's certificate.

6

7

8 New Registration Process 1.An end-user logins into the UC Grid portal via UCTrust to register and create a certificate. The user is given access to the UC Grid default pool. Afterwards... If the user needs access to a specific cluster, the cluster administrator authorizes access. If the user needs access to a campus default pool, the campus grid administrator authorizes access.

9 Technical Integration UC Grid is a Service Provider within UCTrust (InCommon). It obtains eduPersonPrincipleName (ePPN) from the campus Identity Providers. –The ePPN replaces the function of the old UC Grid login and password. On the first login, ePPN is used to create the user's long-term digital certificate. On subsequent logins, ePPN is used to create the short-term certificate for the session.

10 Demonstration

Download ppt "UCTrust Integration for UC Grid David Walker University of California, Davis ucdavis.edu Kejian Jin University of California, Los Angeles kjin."

Similar presentations

Demonstrations at PRAGMA 13 10 demos are nominated by WG chairs Did not call for demos. We will select the best demo(s) Criteria is under discussion. Notes.

Demonstrations at PRAGMA demos are nominated by WG chairs Did not call for demos. We will select the best demo(s) Criteria is under discussion. Notes.
Open Grid Forum 19 January 31, 2007 Chapel Hill, NC Stephen Langella Ohio State University Grid Authentication and Authorization with.

Open Grid Forum 19 January 31, 2007 Chapel Hill, NC Stephen Langella Ohio State University Grid Authentication and Authorization with.
Implementing Federated Identity Management across a Multi-campus Statewide System: The Texas Experience William A. Weems Assistant Vice President Academic.

Implementing Federated Identity Management across a Multi-campus Statewide System: The Texas Experience William A. Weems Assistant Vice President Academic.
Experiences with Massive PKI Deployment and Usage Daniel Kouřil, Michal Procházka Masaryk University & CESNET Security and Protection of Information 2009.

Experiences with Massive PKI Deployment and Usage Daniel Kouřil, Michal Procházka Masaryk University & CESNET Security and Protection of Information 2009.
Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.

Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.
Staff. is a portal. Our portal. Fully customized for Mohawk College… and for you. is a portal. Our portal. Fully customized for Mohawk College… and for.

Staff. is a portal. Our portal. Fully customized for Mohawk College… and for you. is a portal. Our portal. Fully customized for Mohawk College… and for.
- 1 - Defense Security Service Background: During the Fall of 2012 Defense Security Service will be integrating ISFD with the Identity Management (IdM)

- 1 - Defense Security Service Background: During the Fall of 2012 Defense Security Service will be integrating ISFD with the Identity Management (IdM)
1 The Challenges of Creating an Identity Management Infrastructure for the University of California David Walker Karl Heins Office of the President University.

1 The Challenges of Creating an Identity Management Infrastructure for the University of California David Walker Karl Heins Office of the President University.
Sponsored by the National Science Foundation Campus Policies for the GENI Clearinghouse and Portal Sarah Edwards, GPO March 20, 2013.

Sponsored by the National Science Foundation Campus Policies for the GENI Clearinghouse and Portal Sarah Edwards, GPO March 20, 2013.
Lecture 23 Internet Authentication Applications

Lecture 23 Internet Authentication Applications
Information Resources and Communications University of California, Office of the President UCTrust David Walker Office of the President University of California.

Information Resources and Communications University of California, Office of the President UCTrust David Walker Office of the President University of California.
Information Resources and Communications University of California, Office of the President Information Technology Services The California State University.

Information Resources and Communications University of California, Office of the President Information Technology Services The California State University.
U.S. Environmental Protection Agency Central Data Exchange EPA E-Authentication Pilot NOLA Network Node Workshop February 28, 2005.

U.S. Environmental Protection Agency Central Data Exchange EPA E-Authentication Pilot NOLA Network Node Workshop February 28, 2005.
Dorian Grid Identity Management and Federation Dialogue Workshop II Edinburgh, Scotland February 9-10, 2006 Stephen Langella Department.

Dorian Grid Identity Management and Federation Dialogue Workshop II Edinburgh, Scotland February 9-10, 2006 Stephen Langella Department.
WAP Public Key Infrastructure CSCI 5939.02 – Independent Study Fall 2002 Jaleel Syed Presentation No 5.

WAP Public Key Infrastructure CSCI – Independent Study Fall 2002 Jaleel Syed Presentation No 5.
May 22, 2002 Joint Operations Group Discussion Overview Describe the UC Davis Security Architecture Describe Authentication Efforts at UC Davis Current.

May 22, 2002 Joint Operations Group Discussion Overview Describe the UC Davis Security Architecture Describe Authentication Efforts at UC Davis Current.
Information Resources and Communications University of California, Office of the President Current Identity Management Initiatives at UC & Beyond: UCTrust.

Information Resources and Communications University of California, Office of the President Current Identity Management Initiatives at UC & Beyond: UCTrust.
Information Resources and Communications University of California, Office of the President UCTrust Implementation Experiences David Walker, UCOP Albert.

Information Resources and Communications University of California, Office of the President UCTrust Implementation Experiences David Walker, UCOP Albert.
Federated Access to US CyberInfrastructure Jim Basney CILogon This material is based upon work supported by the National Science Foundation.

Federated Access to US CyberInfrastructure Jim Basney CILogon This material is based upon work supported by the National Science Foundation.
Guest Portal for Researchers UMDNJ Ed Castagna University of Medicine and Dentistry of New Jersey.

Guest Portal for Researchers UMDNJ Ed Castagna University of Medicine and Dentistry of New Jersey.

Similar presentations

Ads by Google