Presentation is loading. Please wait.

Presentation is loading. Please wait.

Grouper at the University of Minnesota Christopher A. Bongaarts Grouper Virtual Working Group May 20, 2013.

Published byElijah Montgomery Modified over 9 years ago

Similar presentations

Presentation on theme: "Grouper at the University of Minnesota Christopher A. Bongaarts Grouper Virtual Working Group May 20, 2013."— Presentation transcript:

1 Grouper at the University of Minnesota Christopher A. Bongaarts Grouper Virtual Working Group May 20, 2013

2 In the beginning… Grouper 1.2.1 in production August 2008 Driver: BPEL access management for Enterprise Financial System project –Using LDAP groups to represent roles –Wanted UI with delegated administration Similar desires for helpdesk access to user management interface

3 Timeline, continued Upgraded to 1.5.2 in March 2010 Switched to UW LDAP source adaptor April 2010 Upgrade to 2.1.3 planned for summer 2013

4 Applications using Grouper for access management BPEL workflows Helpdesk account management WorkFlowGen VPN groups Oracle Business Intelligence (OBIEE) Various departmental sites

5 Other uses Google Apps provisioning –Overrides for health care component Netfiles (Xythos WFS) central groups Identifying test directory users

6 Example group

7 Another example group

8 Deployment Architecture

9 Access methods Group management via web UI only –Requires two-factor authN (OTP fob) Client access –LDAP (expressed as group objects, isMemberOf) –Shibboleth (SAML isMemberOf attribute) Gets data from LDAP Attribute filters with stem regexes work slick

10 Directory provisioning Using Grouper Loader changelog API Locally written Java class sends updates to person registry database Person registry pushes updated group data to LDAP directory

11 Future directions Investigate using the PSP for LDAP provisioning Create local documentation Encourage more applications to use Grouper for access control

12 Contact Chris Bongaarts Identity Management University of Minnesota cab@umn.edu

Download ppt "Grouper at the University of Minnesota Christopher A. Bongaarts Grouper Virtual Working Group May 20, 2013."

Similar presentations

CASE STUDIES Indiana University University of California, Davis University of Maryland San Joaquin Delta College University of Arizona University of Washington.

CASE STUDIES Indiana University University of California, Davis University of Maryland San Joaquin Delta College University of Arizona University of Washington.
April 22nd 2008 Internet2 Spring member meeting Caleb Racey Newcastle University UK Studies in Advanced Access Management.

April 22nd 2008 Internet2 Spring member meeting Caleb Racey Newcastle University UK Studies in Advanced Access Management.
Kerry Osborne Senior Oracle Guy. Caveats The opinions expressed are mine … I’m an old guy I am biased towards Oracle technology I have not drunk too much.

Kerry Osborne Senior Oracle Guy. Caveats The opinions expressed are mine … I’m an old guy I am biased towards Oracle technology I have not drunk too much.
Outsourcing IAM in North Carolina

Outsourcing IAM in North Carolina
Manifest – the Service Application Manifest is our new service, with Grouper as its logic engine, to manage populations which are known to us and those.

Manifest – the Service Application Manifest is our new service, with Grouper as its logic engine, to manage populations which are known to us and those.
John Langsford 13 September 2006 CI Implementation Project.

John Langsford 13 September 2006 CI Implementation Project.
Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.

Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.
Federated sign-in WS-Federation WS-Trust SAML 2.0 Metadata Shibboleth Graph API Synchronize accounts Authentication.

Federated sign-in WS-Federation WS-Trust SAML 2.0 Metadata Shibboleth Graph API Synchronize accounts Authentication.
Directory Services Project University of Colorado at Boulder.

Directory Services Project University of Colorado at Boulder.
Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.

Technology Steering Group January 31, 2007 Academic Affairs Technology Steering Group February 13, 2008.
Introduction to Grouper. Open source, community-driven project of the Internet2 Middleware Initiative Initial release v0.5 in December 2004 Grouper originally.

Introduction to Grouper. Open source, community-driven project of the Internet2 Middleware Initiative Initial release v0.5 in December 2004 Grouper originally.
Identity & Access Management / Oracle Unified Directory

Identity & Access Management / Oracle Unified Directory
Access and Identity Management for Enterprise Portals Rohit Gupta Director, Identity Management Product Management Oracle Corporation.

Access and Identity Management for Enterprise Portals Rohit Gupta Director, Identity Management Product Management Oracle Corporation.
Signet and Grouper for Distributed Attribute Administration

Signet and Grouper for Distributed Attribute Administration
©2012 Microsoft Corporation. All rights reserved. Content based on SharePoint 15 Technical Preview and published July 2012.

©2012 Microsoft Corporation. All rights reserved. Content based on SharePoint 15 Technical Preview and published July 2012.
University of Michigan MCommunity Project Liz Salley Product Manager, Michigan Administrative Information Services Luke Tracy

University of Michigan MCommunity Project Liz Salley Product Manager, Michigan Administrative Information Services Luke Tracy
Cloud Control Senior Project Summer 2012. Overview Cloud Control is a platform to control data transmission to/from internet connected devices from the.

Cloud Control Senior Project Summer Overview Cloud Control is a platform to control data transmission to/from internet connected devices from the.
Chris Hyzer University of Pennsylvania

Chris Hyzer University of Pennsylvania
Authorization Scenarios with Signet RL “Bob” Morgan University of Washington Internet2 Member Meeting, September 2004.

Authorization Scenarios with Signet RL “Bob” Morgan University of Washington Internet2 Member Meeting, September 2004.
Kuali Rice at Indiana University Rice Setup Options July 29-30, 2008 Eric Westfall.

Kuali Rice at Indiana University Rice Setup Options July 29-30, 2008 Eric Westfall.

Similar presentations

Ads by Google