Presentation is loading. Please wait.

Presentation is loading. Please wait.

Introduction to Grouper Part 1: Access Management & Grouper Tom Barton University of Chicago and Internet2 Manager – Grouper Project.

Published byTheresa Parker Modified over 9 years ago

Similar presentations

Presentation on theme: "Introduction to Grouper Part 1: Access Management & Grouper Tom Barton University of Chicago and Internet2 Manager – Grouper Project."— Presentation transcript:

1 Introduction to Grouper Part 1: Access Management & Grouper Tom Barton University of Chicago and Internet2 Manager – Grouper Project

2 Lower cost and time to deliver a new service Simplify and make consistent by using the same group or role in many places 2 Why have an access management strategy? January 2012Grouper Training Physics 101 Course Group Lab Reservations Wiki Access Email Group

3 Empower the right people to manage access. Take central IT out of the loop. See who can access what, with a report rather than a fire drill 3 Additional benefits of access management January 2012Grouper Training

4 1.Start out using a single user attribute, affiliation, in LDAP or Active Directory. This lets services implement simple access policies. 4 Access management stages: authorization > authentication January 2012Grouper Training student faculty staff Affiliation guest Service Staff portal

5 2.Enrich & centralize access management with groups determined from systems of record Courses, financial accounts, departments Define service-specific access policies in the centralized access management system 5 Access management stages: authorization > authentication January 2012Grouper Training Math Faculty Group Math Faculty Resources Math Faculty Resources can access

6 3. Get central IT out of the loop Distributed management Exceptions Departmental applications 6 Access management stages: authorization > authentication January 2012Grouper Training Math Faculty Group Math Faculty Resources Math Faculty Resources can access Math Support Group +

7 4.Increase integration of access management Direct integration with applications using web services SOAP/REST/ESB Roles & privileges to support applications more deeply 7 Access management stages: authorization > authentication January 2012Grouper Training For Math Department, while John works there HR Admin Role

8 Open source, community-driven project of the Internet2 Middleware Initiative Initial release v0.5 in December 2004 8 The Grouper Story January 2012Grouper Training

9 Key aims Delegation and distributed management Integration with most any existing Identity Management infrastructure 9 The Grouper Story January 2012Grouper Training Existing IdM Infrastructure

10 Grouper v2.X expanded beyond groups Roles & permissions Rules 10 The Grouper Story January 2012Grouper Training -If removed from group A -then remove from group B -If removed from group A -then remove from group B HR-Admin

11 11 January 2012 Thanks! Further information: Infosheets, mail lists, wiki, downloads, etc: www.internet2.edu/grouper Grouper demo server: https://grouperdemo.internet2.edu/

12 12 January 2012 Next Video in Grouper Online Training is: Introduction to Grouper Part 2: Grouper’s Core Access Management Capabilities Click on title above, or go to Grouper Online Training Home at

Download ppt "Introduction to Grouper Part 1: Access Management & Grouper Tom Barton University of Chicago and Internet2 Manager – Grouper Project."

Similar presentations

Grouper Training End Users Lite UI – External Users

Grouper Training End Users Lite UI – External Users
Grouper Training Developers and Architects LDAP Shilen Patel Duke University This work licensed under a Creative Commons Attribution-NonCommercial 3.0.

Grouper Training Developers and Architects LDAP Shilen Patel Duke University This work licensed under a Creative Commons Attribution-NonCommercial 3.0.
Grouper Training - Admin Loader - Part 1 Chris Hyzer Internet2 University of Pennsylvania This work licensed under a Creative Commons Attribution-NonCommercial.

Grouper Training - Admin Loader - Part 1 Chris Hyzer Internet2 University of Pennsylvania This work licensed under a Creative Commons Attribution-NonCommercial.
Grouper Training End Users Lite UI – Permissions – Part 2 Chris Hyzer Internet2 University of Pennsylvania This work licensed under a Creative Commons.

Grouper Training End Users Lite UI – Permissions – Part 2 Chris Hyzer Internet2 University of Pennsylvania This work licensed under a Creative Commons.
Integration Technologies for Grouper & Signet Tom Barton, U Chicago Joy Veronneau, Cornell Gary Brown, U Bristol Lynn McRae, Stanford.

Integration Technologies for Grouper & Signet Tom Barton, U Chicago Joy Veronneau, Cornell Gary Brown, U Bristol Lynn McRae, Stanford.
CAMP: Building a Distributed Access Management Infrastructure Lynn McRae, Stanford University Denver, Nov 7-9, 2006.

CAMP: Building a Distributed Access Management Infrastructure Lynn McRae, Stanford University Denver, Nov 7-9, 2006.
Information Technology Current Work in System Architecture November 2003 Tom Board Director, NUIT Information Systems Architecture.

Information Technology Current Work in System Architecture November 2003 Tom Board Director, NUIT Information Systems Architecture.
Peter Deutsch Director, I&IT Systems July 12, 2005

Peter Deutsch Director, I&IT Systems July 12, 2005
Identity and Access Management IAM A Preview. 2 Goal To design and implement an identity and access management (IAM) middleware infrastructure that –

Identity and Access Management IAM A Preview. 2 Goal To design and implement an identity and access management (IAM) middleware infrastructure that –
Introduction to Grouper. Open source, community-driven project of the Internet2 Middleware Initiative Initial release v0.5 in December 2004 Grouper originally.

Introduction to Grouper. Open source, community-driven project of the Internet2 Middleware Initiative Initial release v0.5 in December 2004 Grouper originally.
System Architecture University of Maryland David Henry Office of Information Technology December 6, 2002.

System Architecture University of Maryland David Henry Office of Information Technology December 6, 2002.
Widely Distributed Access Management Tom Barton University of Chicago.

Widely Distributed Access Management Tom Barton University of Chicago.
A simpler way to manage identities across multiple services Aldo Zanoni, CEO 408.675.5015 ext. 232

A simpler way to manage identities across multiple services Aldo Zanoni, CEO ext. 232
Grouper Training Developers and Architects How to Design Permissions Shilen Patel Duke University This work licensed under a Creative Commons Attribution-NonCommercial.

Grouper Training Developers and Architects How to Design Permissions Shilen Patel Duke University This work licensed under a Creative Commons Attribution-NonCommercial.
Grouper Training End Users Admin UI – Part 6 Shilen Patel Duke University This work licensed under a Creative Commons Attribution-NonCommercial 3.0 Unported.

Grouper Training End Users Admin UI – Part 6 Shilen Patel Duke University This work licensed under a Creative Commons Attribution-NonCommercial 3.0 Unported.
Identity Management – Why and How Experiences at CU-Boulder Copyright Linda Drake, Director of Development and Integration, University of Colorado, Boulder,

Identity Management – Why and How Experiences at CU-Boulder Copyright Linda Drake, Director of Development and Integration, University of Colorado, Boulder,
Grouper UI Part 1 Shilen Patel Duke University This work licensed under a Creative Commons Attribution-NonCommercial 3.0 Unported License.

Grouper UI Part 1 Shilen Patel Duke University This work licensed under a Creative Commons Attribution-NonCommercial 3.0 Unported License.
EDUCAUSE April 25, 2006Enforcing Compliance with Security Policies … Enforcing Compliance of Campus Security Policies Through a Secure Identity Management.

EDUCAUSE April 25, 2006Enforcing Compliance with Security Policies … Enforcing Compliance of Campus Security Policies Through a Secure Identity Management.
Grouper Training End Users Admin UI – Part 5 Shilen Patel Duke University This work licensed under a Creative Commons Attribution-NonCommercial 3.0 Unported.

Grouper Training End Users Admin UI – Part 5 Shilen Patel Duke University This work licensed under a Creative Commons Attribution-NonCommercial 3.0 Unported.
Introduction to Grouper

Introduction to Grouper

Similar presentations

Ads by Google