SlideShare a Scribd company logo

Unicon June 2014 IAM Briefing

Download as ODP, PDF
John Gasper
John Gasper

Public briefing from Unicon's IAM team on observations and highlights about Apereo/Jasig CAS, Internet 2 Shibboleth, and Internet 2 Grouper. Unicon Open Source Support development progress and intentions for the next quarter are also shared. http://www.unicon.net/support

Technology
1 of 34
Unicon IAM Update CAS, Shibboleth, Grouper 26 June 2014 Mike Grady • Misagh Moayyed • Bill Thompson Audio is via Adobe Connect. There is no phone dial-in.
Welcome to this briefing • Updates on CAS, Shibboleth and Grouper • Unicon contributions to CAS, Shibboleth and Grouper • Unicon's Open Source Support • Q&A
Introduction: Mike Grady • IAM, Shibboleth, CAS, Internet2 Scalable Privacy • 36 years at University of Illinois before Unicon • Unicon’s Open Source Support for Shibboleth technical lead
Introduction: Misagh Moayyed • IAM, Shibboleth, CAS, uPortal, uMobile • #1 CAS Committer over the last 3 years • Unicon’s Open Source Support for CAS technical lead
Observations and Highlights
Past Events • ShibbolethWorkshop Series - March 24-25 Durham, NC • Internet2 Global Summit - April 6-10 Denver, CO • Open Apereo 2014 - June 1-4 Miami, FL
Apereo IAM Sessions • CASifying PeopleSoft & ADFS: http://lanyrd.com/2014/apereo/sdbbdp/ • To CAS 3 and Beyond: http://lanyrd.com/2014/apereo/sczzzt/ • Grouper for Beginners: http://lanyrd.com/2014/apereo/sdbdmm/ • 2FA Authentication with CAS: http://lanyrd.com/2014/apereo/sdbbdh/
• ShibbolethWorkshop Series – July 24-25, 2014 Indianapolis, IN • ShibbolethWorkshop Series – Sept 29-30, 2014 Newark, NJ • Internet2Technology Exchange/IdentityWeek – Oct 26- 30, Indianapolis, IN • ShibbolethWorkshop Series – Nov 10-11, 2014 Salt Lake City, UT Upcoming Events
Highlights About CAS
CAS Releases • CAS 3.5.2.1 & CAS 3.4.12.1 (4/1/2014)  SAML 2.0 Security Exploit Patch: Patch if you integrate with Google Apps, JICS, etc. •CAS 4.0.0 (5/7/2014)
CAS 4: Features • New /p3/serviceValidate endpoint for user attributes • LPPE Improvements: OpenLDAP support, etc... • Disallow Empty Service Registry • Default Service Proxy AuthN set to Off • Many more...
CAS 3.0 Protocol • Return user attributes upon validation • Backwards-compatible with clients
CAS Documentation http://jasig.github.io/cas
CAS: Moving Forward •CAS v4.1: Discussion ongoing Join cas-dev@lists.jasig.org •CAS AppSec Working Group: https://wiki.jasig.org/display/CAS/CAS+AppSec+Working+Group
Highlights About Shibboleth
Shibboleth • IdP v3 development in progress; https://wiki.shibboleth.net/confluence/display/DEV/IdP3Details • Alpha1 release of IdP v3 just released this morning, see https://wiki.shibboleth.net/confluence/display/IDP30/ • Multi-Context Broker (MCB) being deployed in production • Latest versions: IdP v2.4.0, SP v2.5.3 (+2 patches for Windows SP*) * Heartbleed, OpenSSL
Identity Provider v3 • Release Goals: • Support extensions (i.e. uApprove) within profiles • Improve “rough spots” in the API • V2 protocol interoperable; API-incompatible https://wiki.shibboleth.net/confluence/display/IDP30/Software+Design • Q3 Fall 2014 release is planned
Highlights About Grouper
Grouper v2.2 http://goo.gl/5LrGAR • Released this... very soon! • Optimized UI for desktop and mobile • End-user friendly UI • Security Enhancements
Grouper UI http://grouper-ui.uchicago.edu/hifi
Highlights About Unicon Participation in CAS, Shibboleth and Grouper
Open Source Support • Support for open source software as adopted by the community • Unicon collaborates to maintain the supported open source software making it more supportable and valuable to subscribers • “Act in the best interest of the subscribers, the community, and the project”
CAS-related progress
cas-addons https://github.com/Unicon/cas-addons • Latest available release: 1.11.1 • New extensions: HazelcastTicketRegistry
CAS/ADFS Integration https://github.com/Unicon/cas-adfs-integration • CASify Microsoft ADFS • Delegate CAS AuthN to Microsoft ADFS
UniconLabs https://github.com/UniconLabs • simple-cas-overlay-template Quick start for building a CAS deployment • cas-surrogate-principal A CAS module that allows a principal to authenticate as another
Shibboleth-related progress
Shib-CAS authenticator v2 https://github.com/Unicon/shib-cas-authn2 • Support for both forced and passive authN • Simpler, externalized configuration • CAS and Shibboleth can be on separate servers • Communicate the “entityId” to CAS
Other work • Updating Shib wiki as we discover areas to be improved, corrected, etc. from our work with the Shib software and related extensions. (E.g. Multi-Context Broker, Velocity template additions that allow use of Google Analytics to analyze IdP usage, etc.) • Finalized Tomcat7 DTA-SSL https://wiki.shibboleth.net/confluence/x/WYFC
Future work • Helping with testing of Shib IdP v3 • In discussion with developer community to find more ways to assist • Particular missing features you need?
Grouper Related Work • uPortal: Roles and Permissions? • Additional authZ connectors? • CAS SSO for Grouper? https://spaces.internet2.edu/display/Grouper/Unicon+Grouper+Contributions
What we do • Collaborate to maintain current stable recommended releases • Work towards next releases • Explore extensions and opportunities • Responsive to inputs from subscriber experiences • Feedback is especially welcome! • Learn from providing support • Empathize with your needs and projects
Let’s do this again. •Next Unicon IAM Update: •Thursday November 6th 2014 •2 PM Eastern/11 AM Pacific
Questions / Discussion • Bill Thompson Director of IAM Practice wgthom@unicon.net • Mike Grady, Support for Shibboleth Technical Lead mgrady@unicon.net • Misagh Moayyed, Support for CAS Technical Lead mmoayyed@unicon.net

Recommended

OSMC 2017 | Ops and dev stories- Integrate everything into your monitoring st...
OSMC 2017 | Ops and dev stories- Integrate everything into your monitoring st...OSMC 2017 | Ops and dev stories- Integrate everything into your monitoring st...
OSMC 2017 | Ops and dev stories- Integrate everything into your monitoring st...NETWAYS
 
Icinga Camp Bangalore - Enterprise exceptions
Icinga Camp Bangalore - Enterprise exceptions Icinga Camp Bangalore - Enterprise exceptions
Icinga Camp Bangalore - Enterprise exceptions Icinga
 
OSMC 2017 | Icinga 2 Multi Zone HA Setup using Ansible by Toshaan Bharvani
OSMC 2017 | Icinga 2 Multi Zone HA Setup using Ansible by Toshaan BharvaniOSMC 2017 | Icinga 2 Multi Zone HA Setup using Ansible by Toshaan Bharvani
OSMC 2017 | Icinga 2 Multi Zone HA Setup using Ansible by Toshaan BharvaniNETWAYS
 
Automated Project-Setup and Self-Service Permissions for a Development Platform
Automated Project-Setup and Self-Service Permissions for a Development PlatformAutomated Project-Setup and Self-Service Permissions for a Development Platform
Automated Project-Setup and Self-Service Permissions for a Development PlatformJosefChristophRosel
 
Icinga 2010 at CeBIT
Icinga 2010 at CeBITIcinga 2010 at CeBIT
Icinga 2010 at CeBITIcinga
 
Putting The 'M' In MBaaS—Red Hat Mobile Client Development Platform (Jay Balu...
Putting The 'M' In MBaaS—Red Hat Mobile Client Development Platform (Jay Balu...Putting The 'M' In MBaaS—Red Hat Mobile Client Development Platform (Jay Balu...
Putting The 'M' In MBaaS—Red Hat Mobile Client Development Platform (Jay Balu...Red Hat Developers
 
Stream based mobile and web event tracking backed by aws kinesis
Stream based mobile and web event tracking backed by aws kinesisStream based mobile and web event tracking backed by aws kinesis
Stream based mobile and web event tracking backed by aws kinesisSebastian Schleicher
 
Architecture Evolution 2018
Architecture Evolution 2018Architecture Evolution 2018
Architecture Evolution 2018Sebastian Schleicher
 

Recommended

OSMC 2017 | Ops and dev stories- Integrate everything into your monitoring st...
OSMC 2017 | Ops and dev stories- Integrate everything into your monitoring st...OSMC 2017 | Ops and dev stories- Integrate everything into your monitoring st...
OSMC 2017 | Ops and dev stories- Integrate everything into your monitoring st...NETWAYS
 
Icinga Camp Bangalore - Enterprise exceptions
Icinga Camp Bangalore - Enterprise exceptions Icinga Camp Bangalore - Enterprise exceptions
Icinga Camp Bangalore - Enterprise exceptions Icinga
 
OSMC 2017 | Icinga 2 Multi Zone HA Setup using Ansible by Toshaan Bharvani
OSMC 2017 | Icinga 2 Multi Zone HA Setup using Ansible by Toshaan BharvaniOSMC 2017 | Icinga 2 Multi Zone HA Setup using Ansible by Toshaan Bharvani
OSMC 2017 | Icinga 2 Multi Zone HA Setup using Ansible by Toshaan BharvaniNETWAYS
 
Automated Project-Setup and Self-Service Permissions for a Development Platform
Automated Project-Setup and Self-Service Permissions for a Development PlatformAutomated Project-Setup and Self-Service Permissions for a Development Platform
Automated Project-Setup and Self-Service Permissions for a Development PlatformJosefChristophRosel
 
Icinga 2010 at CeBIT
Icinga 2010 at CeBITIcinga 2010 at CeBIT
Icinga 2010 at CeBITIcinga
 
Putting The 'M' In MBaaS—Red Hat Mobile Client Development Platform (Jay Balu...
Putting The 'M' In MBaaS—Red Hat Mobile Client Development Platform (Jay Balu...Putting The 'M' In MBaaS—Red Hat Mobile Client Development Platform (Jay Balu...
Putting The 'M' In MBaaS—Red Hat Mobile Client Development Platform (Jay Balu...Red Hat Developers
 
Stream based mobile and web event tracking backed by aws kinesis
Stream based mobile and web event tracking backed by aws kinesisStream based mobile and web event tracking backed by aws kinesis
Stream based mobile and web event tracking backed by aws kinesisSebastian Schleicher
 
Architecture Evolution 2018
Architecture Evolution 2018Architecture Evolution 2018
Architecture Evolution 2018Sebastian Schleicher
 
Big ideas in small packages - How microservices helped us to scale our vision
Big ideas in small packages - How microservices helped us to scale our visionBig ideas in small packages - How microservices helped us to scale our vision
Big ideas in small packages - How microservices helped us to scale our visionSebastian Schleicher
 
Icinga Camp Barcelona - Icinga Web 2
Icinga Camp Barcelona - Icinga Web 2Icinga Camp Barcelona - Icinga Web 2
Icinga Camp Barcelona - Icinga Web 2Icinga
 
IcingaCamp Stockholm - Graphing with Graphite und Grafana
IcingaCamp Stockholm - Graphing with Graphite und GrafanaIcingaCamp Stockholm - Graphing with Graphite und Grafana
IcingaCamp Stockholm - Graphing with Graphite und GrafanaIcinga
 
How to avoid microservice pitfalls
How to avoid microservice pitfallsHow to avoid microservice pitfalls
How to avoid microservice pitfallsParticular Software
 
Glpi 9.2-presentation
Glpi 9.2-presentationGlpi 9.2-presentation
Glpi 9.2-presentationalexandre delaunay
 
Extending Piwik At R7.com
Extending Piwik At R7.comExtending Piwik At R7.com
Extending Piwik At R7.comLeo Lorieri
 
Log Monitoring Simplified - Get the best out of Graylog2 & Icinga 2
Log Monitoring Simplified - Get the best out of Graylog2 & Icinga 2Log Monitoring Simplified - Get the best out of Graylog2 & Icinga 2
Log Monitoring Simplified - Get the best out of Graylog2 & Icinga 2Icinga
 
Mohammad Hasan Dehghan Presentation on IWMC 2015
Mohammad Hasan Dehghan Presentation on IWMC 2015Mohammad Hasan Dehghan Presentation on IWMC 2015
Mohammad Hasan Dehghan Presentation on IWMC 2015Iran Entrepreneurship Association
 
SocCnx11 - Two wrongs don't make a right - Troubleshooting Connections
SocCnx11 - Two wrongs don't make a right - Troubleshooting ConnectionsSocCnx11 - Two wrongs don't make a right - Troubleshooting Connections
SocCnx11 - Two wrongs don't make a right - Troubleshooting Connectionspanagenda
 
Icinga 2012 at Monitoring Workshop
Icinga 2012 at Monitoring WorkshopIcinga 2012 at Monitoring Workshop
Icinga 2012 at Monitoring WorkshopIcinga
 
Haufe #msaday: "Building a Microservice Ecosystem"
Haufe #msaday: "Building a Microservice Ecosystem"Haufe #msaday: "Building a Microservice Ecosystem"
Haufe #msaday: "Building a Microservice Ecosystem"Daniel Bryant
 
Kibana globalization at the RTP meetup
Kibana globalization at the RTP meetupKibana globalization at the RTP meetup
Kibana globalization at the RTP meetupShikha Srivastava
 
Icinga Camp Berlin 2018 - Automated Monitoring of Proxmox VE with Icinga Dire...
Icinga Camp Berlin 2018 - Automated Monitoring of Proxmox VE with Icinga Dire...Icinga Camp Berlin 2018 - Automated Monitoring of Proxmox VE with Icinga Dire...
Icinga Camp Berlin 2018 - Automated Monitoring of Proxmox VE with Icinga Dire...Icinga
 
GraphDay Paris - Intégrer des flux de données dans Neo4j avec l'ETL Open Sour...
GraphDay Paris - Intégrer des flux de données dans Neo4j avec l'ETL Open Sour...GraphDay Paris - Intégrer des flux de données dans Neo4j avec l'ETL Open Sour...
GraphDay Paris - Intégrer des flux de données dans Neo4j avec l'ETL Open Sour...Neo4j
 
Sitecore Helix/Habitat Architecture and Ecosystem
Sitecore Helix/Habitat Architecture and EcosystemSitecore Helix/Habitat Architecture and Ecosystem
Sitecore Helix/Habitat Architecture and EcosystemMohamed Krimi
 
Icinga Camp Berlin 2016 - Opening
Icinga Camp Berlin 2016 - OpeningIcinga Camp Berlin 2016 - Opening
Icinga Camp Berlin 2016 - OpeningIcinga
 
Making auditing great again! Office 365
Making auditing great again! Office 365Making auditing great again! Office 365
Making auditing great again! Office 365Paul Hunt
 
Building Reactive Applications With Node.Js And Red Hat JBoss Data Grid (Gald...
Building Reactive Applications With Node.Js And Red Hat JBoss Data Grid (Gald...Building Reactive Applications With Node.Js And Red Hat JBoss Data Grid (Gald...
Building Reactive Applications With Node.Js And Red Hat JBoss Data Grid (Gald...Red Hat Developers
 
The Fn Project: A Quick Introduction (December 2017)
The Fn Project: A Quick Introduction (December 2017)The Fn Project: A Quick Introduction (December 2017)
The Fn Project: A Quick Introduction (December 2017)Oracle Developers
 
DEVNET-1112 The DevNet Hackathon Awards
DEVNET-1112 The DevNet Hackathon AwardsDEVNET-1112 The DevNet Hackathon Awards
DEVNET-1112 The DevNet Hackathon AwardsCisco DevNet
 
Unicon July 2015 IAM Briefing
Unicon July 2015 IAM BriefingUnicon July 2015 IAM Briefing
Unicon July 2015 IAM BriefingJohn Gasper
 
2014 Q4 IAM Open Source Support Program Update
2014 Q4 IAM Open Source Support Program Update2014 Q4 IAM Open Source Support Program Update
2014 Q4 IAM Open Source Support Program UpdateJohn Gasper
 

More Related Content

What's hot

Big ideas in small packages - How microservices helped us to scale our vision
Big ideas in small packages - How microservices helped us to scale our visionBig ideas in small packages - How microservices helped us to scale our vision
Big ideas in small packages - How microservices helped us to scale our visionSebastian Schleicher
 
Icinga Camp Barcelona - Icinga Web 2
Icinga Camp Barcelona - Icinga Web 2Icinga Camp Barcelona - Icinga Web 2
Icinga Camp Barcelona - Icinga Web 2Icinga
 
IcingaCamp Stockholm - Graphing with Graphite und Grafana
IcingaCamp Stockholm - Graphing with Graphite und GrafanaIcingaCamp Stockholm - Graphing with Graphite und Grafana
IcingaCamp Stockholm - Graphing with Graphite und GrafanaIcinga
 
How to avoid microservice pitfalls
How to avoid microservice pitfallsHow to avoid microservice pitfalls
How to avoid microservice pitfallsParticular Software
 
Extending Piwik At R7.com
Extending Piwik At R7.comExtending Piwik At R7.com
Extending Piwik At R7.comLeo Lorieri
 
Log Monitoring Simplified - Get the best out of Graylog2 & Icinga 2
Log Monitoring Simplified - Get the best out of Graylog2 & Icinga 2Log Monitoring Simplified - Get the best out of Graylog2 & Icinga 2
Log Monitoring Simplified - Get the best out of Graylog2 & Icinga 2Icinga
 
SocCnx11 - Two wrongs don't make a right - Troubleshooting Connections
SocCnx11 - Two wrongs don't make a right - Troubleshooting ConnectionsSocCnx11 - Two wrongs don't make a right - Troubleshooting Connections
SocCnx11 - Two wrongs don't make a right - Troubleshooting Connectionspanagenda
 
Icinga 2012 at Monitoring Workshop
Icinga 2012 at Monitoring WorkshopIcinga 2012 at Monitoring Workshop
Icinga 2012 at Monitoring WorkshopIcinga
 
Haufe #msaday: "Building a Microservice Ecosystem"
Haufe #msaday: "Building a Microservice Ecosystem"Haufe #msaday: "Building a Microservice Ecosystem"
Haufe #msaday: "Building a Microservice Ecosystem"Daniel Bryant
 
Kibana globalization at the RTP meetup
Kibana globalization at the RTP meetupKibana globalization at the RTP meetup
Kibana globalization at the RTP meetupShikha Srivastava
 
Icinga Camp Berlin 2018 - Automated Monitoring of Proxmox VE with Icinga Dire...
Icinga Camp Berlin 2018 - Automated Monitoring of Proxmox VE with Icinga Dire...Icinga Camp Berlin 2018 - Automated Monitoring of Proxmox VE with Icinga Dire...
Icinga Camp Berlin 2018 - Automated Monitoring of Proxmox VE with Icinga Dire...Icinga
 
GraphDay Paris - Intégrer des flux de données dans Neo4j avec l'ETL Open Sour...
GraphDay Paris - Intégrer des flux de données dans Neo4j avec l'ETL Open Sour...GraphDay Paris - Intégrer des flux de données dans Neo4j avec l'ETL Open Sour...
GraphDay Paris - Intégrer des flux de données dans Neo4j avec l'ETL Open Sour...Neo4j
 
Sitecore Helix/Habitat Architecture and Ecosystem
Sitecore Helix/Habitat Architecture and EcosystemSitecore Helix/Habitat Architecture and Ecosystem
Sitecore Helix/Habitat Architecture and EcosystemMohamed Krimi
 
Icinga Camp Berlin 2016 - Opening
Icinga Camp Berlin 2016 - OpeningIcinga Camp Berlin 2016 - Opening
Icinga Camp Berlin 2016 - OpeningIcinga
 
Making auditing great again! Office 365
Making auditing great again! Office 365Making auditing great again! Office 365
Making auditing great again! Office 365Paul Hunt
 
Building Reactive Applications With Node.Js And Red Hat JBoss Data Grid (Gald...
Building Reactive Applications With Node.Js And Red Hat JBoss Data Grid (Gald...Building Reactive Applications With Node.Js And Red Hat JBoss Data Grid (Gald...
Building Reactive Applications With Node.Js And Red Hat JBoss Data Grid (Gald...Red Hat Developers
 
The Fn Project: A Quick Introduction (December 2017)
The Fn Project: A Quick Introduction (December 2017)The Fn Project: A Quick Introduction (December 2017)
The Fn Project: A Quick Introduction (December 2017)Oracle Developers
 
DEVNET-1112 The DevNet Hackathon Awards
DEVNET-1112 The DevNet Hackathon AwardsDEVNET-1112 The DevNet Hackathon Awards
DEVNET-1112 The DevNet Hackathon AwardsCisco DevNet
 

What's hot (20)

Big ideas in small packages - How microservices helped us to scale our vision
Big ideas in small packages - How microservices helped us to scale our visionBig ideas in small packages - How microservices helped us to scale our vision
Big ideas in small packages - How microservices helped us to scale our vision
 
Icinga Camp Barcelona - Icinga Web 2
Icinga Camp Barcelona - Icinga Web 2Icinga Camp Barcelona - Icinga Web 2
Icinga Camp Barcelona - Icinga Web 2
 
IcingaCamp Stockholm - Graphing with Graphite und Grafana
IcingaCamp Stockholm - Graphing with Graphite und GrafanaIcingaCamp Stockholm - Graphing with Graphite und Grafana
IcingaCamp Stockholm - Graphing with Graphite und Grafana
 
How to avoid microservice pitfalls
How to avoid microservice pitfallsHow to avoid microservice pitfalls
How to avoid microservice pitfalls
 
Glpi 9.2-presentation
Glpi 9.2-presentationGlpi 9.2-presentation
Glpi 9.2-presentation
 
Extending Piwik At R7.com
Extending Piwik At R7.comExtending Piwik At R7.com
Extending Piwik At R7.com
 
Log Monitoring Simplified - Get the best out of Graylog2 & Icinga 2
Log Monitoring Simplified - Get the best out of Graylog2 & Icinga 2Log Monitoring Simplified - Get the best out of Graylog2 & Icinga 2
Log Monitoring Simplified - Get the best out of Graylog2 & Icinga 2
 
Mohammad Hasan Dehghan Presentation on IWMC 2015
Mohammad Hasan Dehghan Presentation on IWMC 2015Mohammad Hasan Dehghan Presentation on IWMC 2015
Mohammad Hasan Dehghan Presentation on IWMC 2015
 
SocCnx11 - Two wrongs don't make a right - Troubleshooting Connections
SocCnx11 - Two wrongs don't make a right - Troubleshooting ConnectionsSocCnx11 - Two wrongs don't make a right - Troubleshooting Connections
SocCnx11 - Two wrongs don't make a right - Troubleshooting Connections
 
Icinga 2012 at Monitoring Workshop
Icinga 2012 at Monitoring WorkshopIcinga 2012 at Monitoring Workshop
Icinga 2012 at Monitoring Workshop
 
Haufe #msaday: "Building a Microservice Ecosystem"
Haufe #msaday: "Building a Microservice Ecosystem"Haufe #msaday: "Building a Microservice Ecosystem"
Haufe #msaday: "Building a Microservice Ecosystem"
 
Kibana globalization at the RTP meetup
Kibana globalization at the RTP meetupKibana globalization at the RTP meetup
Kibana globalization at the RTP meetup
 
Icinga Camp Berlin 2018 - Automated Monitoring of Proxmox VE with Icinga Dire...
Icinga Camp Berlin 2018 - Automated Monitoring of Proxmox VE with Icinga Dire...Icinga Camp Berlin 2018 - Automated Monitoring of Proxmox VE with Icinga Dire...
Icinga Camp Berlin 2018 - Automated Monitoring of Proxmox VE with Icinga Dire...
 
GraphDay Paris - Intégrer des flux de données dans Neo4j avec l'ETL Open Sour...
GraphDay Paris - Intégrer des flux de données dans Neo4j avec l'ETL Open Sour...GraphDay Paris - Intégrer des flux de données dans Neo4j avec l'ETL Open Sour...
GraphDay Paris - Intégrer des flux de données dans Neo4j avec l'ETL Open Sour...
 
Sitecore Helix/Habitat Architecture and Ecosystem
Sitecore Helix/Habitat Architecture and EcosystemSitecore Helix/Habitat Architecture and Ecosystem
Sitecore Helix/Habitat Architecture and Ecosystem
 
Icinga Camp Berlin 2016 - Opening
Icinga Camp Berlin 2016 - OpeningIcinga Camp Berlin 2016 - Opening
Icinga Camp Berlin 2016 - Opening
 
Making auditing great again! Office 365
Making auditing great again! Office 365Making auditing great again! Office 365
Making auditing great again! Office 365
 
Building Reactive Applications With Node.Js And Red Hat JBoss Data Grid (Gald...
Building Reactive Applications With Node.Js And Red Hat JBoss Data Grid (Gald...Building Reactive Applications With Node.Js And Red Hat JBoss Data Grid (Gald...
Building Reactive Applications With Node.Js And Red Hat JBoss Data Grid (Gald...
 
The Fn Project: A Quick Introduction (December 2017)
The Fn Project: A Quick Introduction (December 2017)The Fn Project: A Quick Introduction (December 2017)
The Fn Project: A Quick Introduction (December 2017)
 
DEVNET-1112 The DevNet Hackathon Awards
DEVNET-1112 The DevNet Hackathon AwardsDEVNET-1112 The DevNet Hackathon Awards
DEVNET-1112 The DevNet Hackathon Awards
 

Viewers also liked

Unicon July 2015 IAM Briefing
Unicon July 2015 IAM BriefingUnicon July 2015 IAM Briefing
Unicon July 2015 IAM BriefingJohn Gasper
 
2014 Q4 IAM Open Source Support Program Update
2014 Q4 IAM Open Source Support Program Update2014 Q4 IAM Open Source Support Program Update
2014 Q4 IAM Open Source Support Program UpdateJohn Gasper
 
Integrating Apache Syncope with Apache CXF
Integrating Apache Syncope with Apache CXFIntegrating Apache Syncope with Apache CXF
Integrating Apache Syncope with Apache CXFcoheigea
 
Open source identity management 20121106 - apache con eu
Open source identity management 20121106 - apache con euOpen source identity management 20121106 - apache con eu
Open source identity management 20121106 - apache con euFrancesco Chicchiriccò
 
Identity Management with the ForgeRock Identity Platform - So What’s New?
Identity Management with the ForgeRock Identity Platform - So What’s New?Identity Management with the ForgeRock Identity Platform - So What’s New?
Identity Management with the ForgeRock Identity Platform - So What’s New?ForgeRock
 
The Gartner IAM Program Maturity Model
The Gartner IAM Program Maturity ModelThe Gartner IAM Program Maturity Model
The Gartner IAM Program Maturity ModelSarah Moore
 

Viewers also liked (6)

Unicon July 2015 IAM Briefing
Unicon July 2015 IAM BriefingUnicon July 2015 IAM Briefing
Unicon July 2015 IAM Briefing
 
2014 Q4 IAM Open Source Support Program Update
2014 Q4 IAM Open Source Support Program Update2014 Q4 IAM Open Source Support Program Update
2014 Q4 IAM Open Source Support Program Update
 
Integrating Apache Syncope with Apache CXF
Integrating Apache Syncope with Apache CXFIntegrating Apache Syncope with Apache CXF
Integrating Apache Syncope with Apache CXF
 
Open source identity management 20121106 - apache con eu
Open source identity management 20121106 - apache con euOpen source identity management 20121106 - apache con eu
Open source identity management 20121106 - apache con eu
 
Identity Management with the ForgeRock Identity Platform - So What’s New?
Identity Management with the ForgeRock Identity Platform - So What’s New?Identity Management with the ForgeRock Identity Platform - So What’s New?
Identity Management with the ForgeRock Identity Platform - So What’s New?
 
The Gartner IAM Program Maturity Model
The Gartner IAM Program Maturity ModelThe Gartner IAM Program Maturity Model
The Gartner IAM Program Maturity Model
 

Similar to Unicon June 2014 IAM Briefing

Unicon Nov 2014 IAM Briefing
Unicon Nov 2014 IAM BriefingUnicon Nov 2014 IAM Briefing
Unicon Nov 2014 IAM BriefingJohn Gasper
 
February 13th, 2014 - Unicon IAM Webinar Update
February 13th, 2014 - Unicon IAM Webinar UpdateFebruary 13th, 2014 - Unicon IAM Webinar Update
February 13th, 2014 - Unicon IAM Webinar UpdateMisagh Moayyed
 
Unicon July 2015 IAM Briefing
Unicon July 2015 IAM BriefingUnicon July 2015 IAM Briefing
Unicon July 2015 IAM BriefingJohn Gasper
 
Create Great CNCF User-Base from Lessons Learned from Other Open Source Commu...
Create Great CNCF User-Base from Lessons Learned from Other Open Source Commu...Create Great CNCF User-Base from Lessons Learned from Other Open Source Commu...
Create Great CNCF User-Base from Lessons Learned from Other Open Source Commu...Lee Calcote
 
Create great cncf user base from lessons learned from other open source com...
Create great cncf user base from lessons learned from other open source com...Create great cncf user base from lessons learned from other open source com...
Create great cncf user base from lessons learned from other open source com...Krishna-Kumar
 
Guide to open source
Guide to open source Guide to open source
Guide to open source Javier Perez
 
7 Apache Process Cloudstack Developer Day
7 Apache Process Cloudstack Developer Day7 Apache Process Cloudstack Developer Day
7 Apache Process Cloudstack Developer DayKimihiko Kitase
 
Equella Q1 2018 Quarterly Briefing
Equella Q1 2018 Quarterly BriefingEquella Q1 2018 Quarterly Briefing
Equella Q1 2018 Quarterly BriefingChrisBeach22
 
Serverless brewbox
Serverless brewboxServerless brewbox
Serverless brewboxLino Telera
 
Sakai Technical Future Musings
Sakai Technical Future MusingsSakai Technical Future Musings
Sakai Technical Future MusingsCharles Severance
 
Atlassian Community virtual meetup July 2020 - 1
Atlassian Community virtual meetup July 2020 - 1Atlassian Community virtual meetup July 2020 - 1
Atlassian Community virtual meetup July 2020 - 1Girish Shenoy
 
Cloudstack China User Group Report
Cloudstack China User Group ReportCloudstack China User Group Report
Cloudstack China User Group Reportgavin_lee
 
OpenStack Glance Project Update
OpenStack Glance Project UpdateOpenStack Glance Project Update
OpenStack Glance Project UpdateBrian Rosmaita
 
KubeCon USA 2017 brief Overview - from Kubernetes meetup Bangalore
KubeCon USA 2017 brief Overview - from Kubernetes meetup BangaloreKubeCon USA 2017 brief Overview - from Kubernetes meetup Bangalore
KubeCon USA 2017 brief Overview - from Kubernetes meetup BangaloreKrishna-Kumar
 
AD1545 - Extending the XPages Extension Library
AD1545 - Extending the XPages Extension LibraryAD1545 - Extending the XPages Extension Library
AD1545 - Extending the XPages Extension Librarypaidi_ed
 
Kubernetes meetup bangalore december 2017 - v02
Kubernetes meetup bangalore december 2017 - v02Kubernetes meetup bangalore december 2017 - v02
Kubernetes meetup bangalore december 2017 - v02Kumar Gaurav
 
GR8CONF Contributing Back To Grails
GR8CONF Contributing Back To GrailsGR8CONF Contributing Back To Grails
GR8CONF Contributing Back To Grailsbobbywarner
 

Similar to Unicon June 2014 IAM Briefing (20)

Unicon Nov 2014 IAM Briefing
Unicon Nov 2014 IAM BriefingUnicon Nov 2014 IAM Briefing
Unicon Nov 2014 IAM Briefing
 
February 13th, 2014 - Unicon IAM Webinar Update
February 13th, 2014 - Unicon IAM Webinar UpdateFebruary 13th, 2014 - Unicon IAM Webinar Update
February 13th, 2014 - Unicon IAM Webinar Update
 
Unicon July 2015 IAM Briefing
Unicon July 2015 IAM BriefingUnicon July 2015 IAM Briefing
Unicon July 2015 IAM Briefing
 
Create Great CNCF User-Base from Lessons Learned from Other Open Source Commu...
Create Great CNCF User-Base from Lessons Learned from Other Open Source Commu...Create Great CNCF User-Base from Lessons Learned from Other Open Source Commu...
Create Great CNCF User-Base from Lessons Learned from Other Open Source Commu...
 
Create great cncf user base from lessons learned from other open source com...
Create great cncf user base from lessons learned from other open source com...Create great cncf user base from lessons learned from other open source com...
Create great cncf user base from lessons learned from other open source com...
 
Guide to open source
Guide to open source Guide to open source
Guide to open source
 
Developing XWiki
Developing XWikiDeveloping XWiki
Developing XWiki
 
7 Apache Process Cloudstack Developer Day
7 Apache Process Cloudstack Developer Day7 Apache Process Cloudstack Developer Day
7 Apache Process Cloudstack Developer Day
 
Equella Q1 2018 Quarterly Briefing
Equella Q1 2018 Quarterly BriefingEquella Q1 2018 Quarterly Briefing
Equella Q1 2018 Quarterly Briefing
 
Build a Cloud Day Paris
Build a Cloud Day ParisBuild a Cloud Day Paris
Build a Cloud Day Paris
 
Serverless brewbox
Serverless brewboxServerless brewbox
Serverless brewbox
 
Sakai Technical Future Musings
Sakai Technical Future MusingsSakai Technical Future Musings
Sakai Technical Future Musings
 
Atlassian Community virtual meetup July 2020 - 1
Atlassian Community virtual meetup July 2020 - 1Atlassian Community virtual meetup July 2020 - 1
Atlassian Community virtual meetup July 2020 - 1
 
Cloudstack China User Group Report
Cloudstack China User Group ReportCloudstack China User Group Report
Cloudstack China User Group Report
 
OpenStack Glance Project Update
OpenStack Glance Project UpdateOpenStack Glance Project Update
OpenStack Glance Project Update
 
KubeCon USA 2017 brief Overview - from Kubernetes meetup Bangalore
KubeCon USA 2017 brief Overview - from Kubernetes meetup BangaloreKubeCon USA 2017 brief Overview - from Kubernetes meetup Bangalore
KubeCon USA 2017 brief Overview - from Kubernetes meetup Bangalore
 
AD1545 - Extending the XPages Extension Library
AD1545 - Extending the XPages Extension LibraryAD1545 - Extending the XPages Extension Library
AD1545 - Extending the XPages Extension Library
 
Kubernetes meetup bangalore december 2017 - v02
Kubernetes meetup bangalore december 2017 - v02Kubernetes meetup bangalore december 2017 - v02
Kubernetes meetup bangalore december 2017 - v02
 
GR8CONF Contributing Back To Grails
GR8CONF Contributing Back To GrailsGR8CONF Contributing Back To Grails
GR8CONF Contributing Back To Grails
 
Into The Box 2023 Keynote Day 1
Into The Box 2023 Keynote Day 1Into The Box 2023 Keynote Day 1
Into The Box 2023 Keynote Day 1
 

Recently uploaded

Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...gurkirankumar98700
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Miguel Araújo
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...apidays
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Paola De la Torre
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024Results
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processorsdebabhi2
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationMichael W. Hawkins
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Scriptwesley chun
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024The Digital Insurer
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 
Developing An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilDeveloping An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilV3cube
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slidespraypatel2
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdfhans926745
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls
 

Recently uploaded (20)

Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
Developing An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of BrazilDeveloping An App To Navigate The Roads of Brazil
Developing An App To Navigate The Roads of Brazil
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slides
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 

Unicon June 2014 IAM Briefing

  • 1. Unicon IAM Update CAS, Shibboleth, Grouper 26 June 2014 Mike Grady • Misagh Moayyed • Bill Thompson Audio is via Adobe Connect. There is no phone dial-in.
  • 2. Welcome to this briefing • Updates on CAS, Shibboleth and Grouper • Unicon contributions to CAS, Shibboleth and Grouper • Unicon's Open Source Support • Q&A
  • 3. Introduction: Mike Grady • IAM, Shibboleth, CAS, Internet2 Scalable Privacy • 36 years at University of Illinois before Unicon • Unicon’s Open Source Support for Shibboleth technical lead
  • 4. Introduction: Misagh Moayyed • IAM, Shibboleth, CAS, uPortal, uMobile • #1 CAS Committer over the last 3 years • Unicon’s Open Source Support for CAS technical lead
  • 6. Past Events • ShibbolethWorkshop Series - March 24-25 Durham, NC • Internet2 Global Summit - April 6-10 Denver, CO • Open Apereo 2014 - June 1-4 Miami, FL
  • 7. Apereo IAM Sessions • CASifying PeopleSoft & ADFS: http://lanyrd.com/2014/apereo/sdbbdp/ • To CAS 3 and Beyond: http://lanyrd.com/2014/apereo/sczzzt/ • Grouper for Beginners: http://lanyrd.com/2014/apereo/sdbdmm/ • 2FA Authentication with CAS: http://lanyrd.com/2014/apereo/sdbbdh/
  • 8. • ShibbolethWorkshop Series – July 24-25, 2014 Indianapolis, IN • ShibbolethWorkshop Series – Sept 29-30, 2014 Newark, NJ • Internet2Technology Exchange/IdentityWeek – Oct 26- 30, Indianapolis, IN • ShibbolethWorkshop Series – Nov 10-11, 2014 Salt Lake City, UT Upcoming Events
  • 10. CAS Releases • CAS 3.5.2.1 & CAS 3.4.12.1 (4/1/2014)  SAML 2.0 Security Exploit Patch: Patch if you integrate with Google Apps, JICS, etc. •CAS 4.0.0 (5/7/2014)
  • 11. CAS 4: Features • New /p3/serviceValidate endpoint for user attributes • LPPE Improvements: OpenLDAP support, etc... • Disallow Empty Service Registry • Default Service Proxy AuthN set to Off • Many more...
  • 12. CAS 3.0 Protocol • Return user attributes upon validation • Backwards-compatible with clients
  • 14. CAS: Moving Forward •CAS v4.1: Discussion ongoing Join cas-dev@lists.jasig.org •CAS AppSec Working Group: https://wiki.jasig.org/display/CAS/CAS+AppSec+Working+Group
  • 16. Shibboleth • IdP v3 development in progress; https://wiki.shibboleth.net/confluence/display/DEV/IdP3Details • Alpha1 release of IdP v3 just released this morning, see https://wiki.shibboleth.net/confluence/display/IDP30/ • Multi-Context Broker (MCB) being deployed in production • Latest versions: IdP v2.4.0, SP v2.5.3 (+2 patches for Windows SP*) * Heartbleed, OpenSSL
  • 17. Identity Provider v3 • Release Goals: • Support extensions (i.e. uApprove) within profiles • Improve “rough spots” in the API • V2 protocol interoperable; API-incompatible https://wiki.shibboleth.net/confluence/display/IDP30/Software+Design • Q3 Fall 2014 release is planned
  • 19. Grouper v2.2 http://goo.gl/5LrGAR • Released this... very soon! • Optimized UI for desktop and mobile • End-user friendly UI • Security Enhancements
  • 21. Highlights About Unicon Participation in CAS, Shibboleth and Grouper
  • 22. Open Source Support • Support for open source software as adopted by the community • Unicon collaborates to maintain the supported open source software making it more supportable and valuable to subscribers • “Act in the best interest of the subscribers, the community, and the project”
  • 24. cas-addons https://github.com/Unicon/cas-addons • Latest available release: 1.11.1 • New extensions: HazelcastTicketRegistry
  • 25. CAS/ADFS Integration https://github.com/Unicon/cas-adfs-integration • CASify Microsoft ADFS • Delegate CAS AuthN to Microsoft ADFS
  • 26. UniconLabs https://github.com/UniconLabs • simple-cas-overlay-template Quick start for building a CAS deployment • cas-surrogate-principal A CAS module that allows a principal to authenticate as another
  • 28. Shib-CAS authenticator v2 https://github.com/Unicon/shib-cas-authn2 • Support for both forced and passive authN • Simpler, externalized configuration • CAS and Shibboleth can be on separate servers • Communicate the “entityId” to CAS
  • 29. Other work • Updating Shib wiki as we discover areas to be improved, corrected, etc. from our work with the Shib software and related extensions. (E.g. Multi-Context Broker, Velocity template additions that allow use of Google Analytics to analyze IdP usage, etc.) • Finalized Tomcat7 DTA-SSL https://wiki.shibboleth.net/confluence/x/WYFC
  • 30. Future work • Helping with testing of Shib IdP v3 • In discussion with developer community to find more ways to assist • Particular missing features you need?
  • 31. Grouper Related Work • uPortal: Roles and Permissions? • Additional authZ connectors? • CAS SSO for Grouper? https://spaces.internet2.edu/display/Grouper/Unicon+Grouper+Contributions
  • 32. What we do • Collaborate to maintain current stable recommended releases • Work towards next releases • Explore extensions and opportunities • Responsive to inputs from subscriber experiences • Feedback is especially welcome! • Learn from providing support • Empathize with your needs and projects
  • 33. Let’s do this again. •Next Unicon IAM Update: •Thursday November 6th 2014 •2 PM Eastern/11 AM Pacific
  • 34. Questions / Discussion • Bill Thompson Director of IAM Practice wgthom@unicon.net • Mike Grady, Support for Shibboleth Technical Lead mgrady@unicon.net • Misagh Moayyed, Support for CAS Technical Lead mmoayyed@unicon.net

Editor's Notes

  1. Unicon's CAS strategy* Participate directly in CAS* Develop open source software on behalf of clients* Inform maintenance development through supportYou have to source your support somewhere* In-house staff* Goodwill and engagement of the community* Commercial partner (e.g., Unicon)* (Reality Often combination of these)Unicon's "Cooperative" Support* Cooperates with you, your staff, the community* Support experiences yield improved public documentation* Support-inspired and subscriber-needs-guided open source maintenance development** Directly in and available for adoption with the Jasig CAS softwareThank you to our support subscribers!* Support subscriptions make Unicon maintenance development possible* Support experiences and subscriber input guide Unicon maintenance development towards the worthwhile