Joining the UK Access Management Federation

1,482 views

Published on

Presentation at the JISC Access Management Transition Programme Meeting from Simon Cooper, UKERNA. This presentation describes the process for joining the UK Access Management Federation

Published in: Business, Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
1,482
On SlideShare
0
From Embeds
0
Number of Embeds
41
Actions
Shares
0
Downloads
25
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide
  • Joining the UK Access Management Federation

    1. 1. Joining the UK Access Management Federation 29th May 2007 Simon Cooper, UKERNA
    2. 2. <ul><li>Eligibility </li></ul><ul><li>Suggested approach </li></ul><ul><li>Methods of participation </li></ul><ul><li>Application process </li></ul><ul><li>Membership </li></ul><ul><li>Support </li></ul>Overview
    3. 3. <ul><li>Who is eligible to join? </li></ul><ul><li>Colleges and universities </li></ul><ul><li>Local Authorities with responsibility for the schools sector </li></ul><ul><li>Research council funded establishments </li></ul><ul><li>Other publicly funded bodies subject to support from relevant authorities </li></ul><ul><li>Commercial organisations </li></ul>
    4. 4. Suggested approach
    5. 5. The six steps <ul><li>Review ID management strategy </li></ul><ul><li>2. Develop user directories: to hold user’s status/entitlements/etc </li></ul><ul><li>3. Authentication development: implement an institutional web authentication system </li></ul>
    6. 6. The six steps <ul><li>4. Implement compatible Identity provider software linked to organisational directory and authentication systems </li></ul><ul><li>5. Join the federation: apply for membership and sign up to federation rules. </li></ul><ul><li>6. Deployment and roll out: staff training, user guides, etc. </li></ul>
    7. 7. Participation <ul><ul><li>In-house </li></ul></ul><ul><ul><ul><li>Deploy own IdP infrastructure </li></ul></ul></ul><ul><ul><li>Out-source </li></ul></ul><ul><ul><ul><li>Purchase IdP service from a third party </li></ul></ul></ul>
    8. 8. Pros and cons: In-house <ul><ul><li>Benefits </li></ul></ul><ul><ul><ul><li>Retain strategic control over ID management </li></ul></ul></ul><ul><ul><ul><li>Convergence of internal/external ID management </li></ul></ul></ul><ul><ul><ul><li>Easier to comply with data protection regulations </li></ul></ul></ul><ul><ul><ul><li>Centrally funded </li></ul></ul></ul><ul><ul><li>Considerations </li></ul></ul><ul><ul><ul><li>May require some effort to consolidate authentication and authorisation infrastructure </li></ul></ul></ul><ul><ul><ul><li>New technology to learn and deploy </li></ul></ul></ul>
    9. 9. Pros and cons: Outsourced <ul><ul><li>Benefits </li></ul></ul><ul><ul><ul><li>Enables participation in the Federation with less effort than taking the in-house route </li></ul></ul></ul><ul><ul><li>Considerations </li></ul></ul><ul><ul><ul><li>Effort required to manage user information </li></ul></ul></ul><ul><ul><ul><li>Cost </li></ul></ul></ul><ul><ul><ul><li>Both the organisation and outsourcing third party must be federation members </li></ul></ul></ul><ul><ul><ul><li>Membership option </li></ul></ul></ul>
    10. 10. What do I need to do to join? <ul><li>Identify your host organisation (the legal body that will sign the rules of membership) </li></ul><ul><li>Arrange for your host organisation to sign the rules of membership and nominate </li></ul><ul><ul><li>Executive liaison who agrees, on behalf of the organisation, to be bound by the rules of membership </li></ul></ul><ul><ul><li>Management liaison who registers entities </li></ul></ul><ul><li>Obtain an X.509 server certificate </li></ul><ul><li>Once membership accepted, management liaison can register entities </li></ul><ul><li>Details of the entity added to federation metadata </li></ul>
    11. 11. Support <ul><li>JANET Customer Services Helpdesk: </li></ul><ul><li>- Joining the federation </li></ul><ul><li>- Registering entities </li></ul><ul><li>- Trouble shooting metadata </li></ul><ul><li>Internet 2 team and Shibboleth community: </li></ul><ul><li>- general Shibboleth and Shib-related queries </li></ul><ul><li>Technical guidance, recommendations and specifications </li></ul><ul><li>SLA entry </li></ul>
    12. 12. Current Membership <ul><li>62 institutions </li></ul><ul><li>- 41 IdP </li></ul><ul><li>- 56 SP </li></ul>
    13. 13. Further Information <ul><li>Website </li></ul><ul><ul><li>www.ukfederation.org.uk </li></ul></ul><ul><li>E-mail lists </li></ul><ul><ul><li>[email_address] </li></ul></ul><ul><ul><li>[email_address] </li></ul></ul>
    14. 14. <ul><li>Questions? </li></ul><ul><li>Website </li></ul><ul><ul><li>www.ukfederation.org.uk </li></ul></ul><ul><li>E-mail lists </li></ul><ul><ul><li>[email_address] </li></ul></ul><ul><ul><li>[email_address] </li></ul></ul>

    ×