Presentation is loading. Please wait.

Presentation is loading. Please wait.

Federated Identity Management at Virginia Tech

Published byDominick Jenkins Modified over 6 years ago

Similar presentations

Presentation on theme: "Federated Identity Management at Virginia Tech"— Presentation transcript:

1 Federated Identity Management at Virginia Tech
Addressing the Risky Business Virginia Tech Case Study Mary Dunker April 14, 2010

2 Copyright Copyright Mary Dunker, This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial, educational purposes, provided that this copyright statement appears on the reproduced materials and notice is given that the copying is by permission of the author. To disseminate otherwise or to republish requires written permission from the author.

3 About Virginia Tech Located in Blacksburg, Virginia
Nine colleges, graduate school, newly-formed medical school 65 bachelor degree programs 145 master and doctoral degree programs 30,000+ full-time students 10,000+ faculty/staff 200,000+ alumni

4 Why Federate? Emphasis on trust and security
“Everybody’s” doing it – common standards Service providers can use a single interface for identity providers Local credentials not necessary for users outside the institution

5 Virginia Tech Implementation
Shibboleth Identity Provider Shibboleth authentication more secure than LDAP for externally hosted services eduPersonScopedAffiliation opaque identifier, different for each service provider per user Shibboleth front-ended with CAS (Central Authentication Service) Provides a familiar login + single sign-on using either PID or personal digital certificate

6 Virginia Tech Use Cases: Virtual Library of Virginia
Service hosted at University of Virginia Enables users from institutions that are members of VIVA and InCommon to view video content First use at Virginia Tech; standard attributes released: eduPersonScopedAffiliation + opaque identifier (eduPersonTargetedID)

7 Virginia Tech Use Cases: Microsoft DreamSpark
Provides developer software from Microsoft at no charge to students Student must sign up at DreamSpark site and create Windows Live ID Shibboleth login used to verify user is a student during first time login Subsequent logins use Live ID

8 Virginia Tech Use Cases: PeopleAdmin
Human resource system for job applications eliminates credential creation at hosted site Used LDAP initially Virginia Tech required migration to Shibboleth or CAS to increase security HR administrator must create profiles on host VT could deliver profile information in SAML payload, if PeopleAdmin could process info.

9 Virginia Tech Use Cases: Google e-Mail
Shibboleth authentication – not InCommon Web access to Google using VT PID; requires eduPersonPrincipleName Allows single sign-on using VT CAS Does not accommodate POP or IMAP clients Over 31,000 alumni eligible; > 19,000 VT Google accounts set up as of March, 2010

10 Virginia Tech Use Cases: Digital Measures
Future plans to implement Activity Insight using Shibboleth for authentication.

11 References Virginia Tech Shibboleth Implementation InCommon CAMP InCommon Affiliate Program Shibboleth InstallFest

12 What did you think? Your input is important to us!
Click on “Evaluate This Session” on the conference program page.

Download ppt "Federated Identity Management at Virginia Tech"

Similar presentations

Glenn Johnson John A. Dutton e-Education Institute Project Manager, Penn States e-Portfolio Initiative Glenn Johnson John A. Dutton e-Education Institute.

Glenn Johnson John A. Dutton e-Education Institute Project Manager, Penn States e-Portfolio Initiative Glenn Johnson John A. Dutton e-Education Institute.
What Does the Net Generation Expect From Us? SAC August 8, 2005 SAC August 8, 2005 Copyright © 2005, Joel L. Hartman. This work is the intellectual property.

What Does the Net Generation Expect From Us? SAC August 8, 2005 SAC August 8, 2005 Copyright © 2005, Joel L. Hartman. This work is the intellectual property.
DSpace: the MIT Libraries Institutional Repository MacKenzie Smith, MIT EDUCAUSE 2003, November 5 th Copyright MacKenzie Smith, 2003. This work is the.

DSpace: the MIT Libraries Institutional Repository MacKenzie Smith, MIT EDUCAUSE 2003, November 5 th Copyright MacKenzie Smith, This work is the.
Linda Ricks Managing Director, Information Systems May 25, 2006 Project and Resource Portfolio Management.

Linda Ricks Managing Director, Information Systems May 25, 2006 Project and Resource Portfolio Management.
A Web-based Bibliography Management Initiative: Collaborating for Classroom and Library Technology Integration Brian Nielsen, Academic Technologies Denise.

A Web-based Bibliography Management Initiative: Collaborating for Classroom and Library Technology Integration Brian Nielsen, Academic Technologies Denise.
Identity Assurance at Virginia Tech CSG January 13, 2010 Mary Dunker

Identity Assurance at Virginia Tech CSG January 13, 2010 Mary Dunker
1 Extending Authenticated Online Services with Friend Accounts at Washington State University Brian Foley Technology Architect/Application Developer.

1 Extending Authenticated Online Services with "Friend Accounts" at Washington State University Brian Foley Technology Architect/Application Developer.
Using Levels of Assurance Renee Shuey nmi-edit CAMP: Charting Your Authentication Roadmap February 8, 2007.

Using Levels of Assurance Renee Shuey nmi-edit CAMP: Charting Your Authentication Roadmap February 8, 2007.
Brown University Shibboleth at Brown University James Cramton May 28, 2009 Copyright © James Cramton 2009 This work is the intellectual property of the.

Brown University Shibboleth at Brown University James Cramton May 28, 2009 Copyright © James Cramton 2009 This work is the intellectual property of the.
Brown University Shibboleth at Brown University James Cramton March 5, 2009 Copyright © James Cramton 2009 This work is the intellectual property of the.

Brown University Shibboleth at Brown University James Cramton March 5, 2009 Copyright © James Cramton 2009 This work is the intellectual property of the.
NJVid New Jersey Video Portal 1 Grant partners. NJVid New Jersey Video Portal 2 NJTrust - New Jersey Identity Trust Federation NJViD Advisory Board Meeting.

NJVid New Jersey Video Portal 1 Grant partners. NJVid New Jersey Video Portal 2 NJTrust - New Jersey Identity Trust Federation NJViD Advisory Board Meeting.
Identity Management: The Legacy and Real Solutions Project Overview.

Identity Management: The Legacy and Real Solutions Project Overview.
Moving Your Paperwork Online Western Washington University E-Sign Web Forms Copyright Western Washington University, 2004. This work is the intellectual.

Moving Your Paperwork Online Western Washington University E-Sign Web Forms Copyright Western Washington University, This work is the intellectual.
Darrel S. Huish Katherine J. Ranes Arizona State University Lessons Learned During the First Year of myASU, a Large Institution Portal Copyright Darrel.

Darrel S. Huish Katherine J. Ranes Arizona State University Lessons Learned During the First Year of myASU, a Large Institution Portal Copyright Darrel.
Shibboleth and InCommon Copyright Texas A&M University 2008. This work is the intellectual property of the author. Permission is granted for this material.

Shibboleth and InCommon Copyright Texas A&M University This work is the intellectual property of the author. Permission is granted for this material.
Learning Management Systems Camp June 2004 Barry R Ribbeck UT HSC Houston Copyright, Barry Ribbeck, 2004. This work is the intellectual property of the.

Learning Management Systems Camp June 2004 Barry R Ribbeck UT HSC Houston Copyright, Barry Ribbeck, This work is the intellectual property of the.
CAMP Med Mapping HIPAA to the Middleware Layer Sandra Senti Biological Sciences Division University of Chicago C opyright Sandra Senti,

CAMP Med Mapping HIPAA to the Middleware Layer Sandra Senti Biological Sciences Division University of Chicago C opyright Sandra Senti,
Invent the Future. Some information about VT ~28,000 students; 83% UG/17% Graduate Most users publish/utilize a single address such as

Invent the Future. Some information about VT ~28,000 students; 83% UG/17% Graduate Most users publish/utilize a single address such as
Identity Management – Why and How Experiences at CU-Boulder Copyright Linda Drake, Director of Development and Integration, University of Colorado, Boulder,

Identity Management – Why and How Experiences at CU-Boulder Copyright Linda Drake, Director of Development and Integration, University of Colorado, Boulder,
Page 1 Copyright Jill M. Forrester 2007. This work is the intellectual property of the author. Permission is granted for this material to be shared for.

Page 1 Copyright Jill M. Forrester This work is the intellectual property of the author. Permission is granted for this material to be shared for.

Similar presentations

Ads by Google