Introduction to Grouper Part 1 Access Management Grouper

  • Slides: 12
Download presentation
Introduction to Grouper Part 1: Access Management & Grouper Tom Barton University of Chicago

Introduction to Grouper Part 1: Access Management & Grouper Tom Barton University of Chicago and Internet 2 Manager – Grouper Project

Why have an access management strategy? • Lower cost and time to deliver a

Why have an access management strategy? • Lower cost and time to deliver a new service • Simplify and make consistent by using the same group or role in many places Physics 101 Course Group Email Group Wiki Access Lab Reservations 2 January 2012 Grouper Training

Additional benefits of access management • Empower the right people to manage access. Take

Additional benefits of access management • Empower the right people to manage access. Take central IT out of the loop. • See who can access what, with a report rather than a fire drill 3 January 2012 Grouper Training

Access management stages: authorization > authentication 1. Start out using a single user attribute,

Access management stages: authorization > authentication 1. Start out using a single user attribute, affiliation, in LDAP or Active Directory. This lets services implement simple access policies. Affiliation Service student faculty staff guest 4 January 2012 Grouper Training Staff portal

Access management stages: authorization > authentication 2. Enrich & centralize access management with groups

Access management stages: authorization > authentication 2. Enrich & centralize access management with groups determined from systems of record • Courses, financial accounts, departments • Define service-specific access policies in the centralized access management system Math Faculty Group can access 5 January 2012 Grouper Training Math Faculty Resources

Access management stages: authorization > authentication 3. Get central IT out of the loop

Access management stages: authorization > authentication 3. Get central IT out of the loop • Distributed management • Exceptions • Departmental applications Math Faculty Group Math Support Group + 6 January 2012 can access Grouper Training Math Faculty Resources

Access management stages: authorization > authentication 4. Increase integration of access management • Direct

Access management stages: authorization > authentication 4. Increase integration of access management • Direct integration with applications using web services • SOAP/REST/ESB • Roles & privileges to support applications more deeply For Math Department, while John works there 7 January 2012 Grouper Training HR Admin Role

The Grouper Story • Open source, community-driven project of the Internet 2 Middleware Initiative

The Grouper Story • Open source, community-driven project of the Internet 2 Middleware Initiative • Initial release v 0. 5 in December 2004 8 January 2012 Grouper Training

The Grouper Story • Key aims • Delegation and distributed management • Integration with

The Grouper Story • Key aims • Delegation and distributed management • Integration with most any existing Identity Management infrastructure Existing Id. M Infrastructure 9 January 2012 Grouper Training

The Grouper Story • Grouper v 2. X expanded beyond groups • Roles &

The Grouper Story • Grouper v 2. X expanded beyond groups • Roles & permissions HR-Admin • Rules - If 10 - removed from group A then remove from group B January 2012 Grouper Training

Thanks! Further information: Infosheets, mail lists, wiki, downloads, etc: www. internet 2. edu/grouper Grouper

Thanks! Further information: Infosheets, mail lists, wiki, downloads, etc: www. internet 2. edu/grouper Grouper demo server: https: //grouperdemo. internet 2. edu/ 11 January 2012

Next Video in Grouper Online Training is: Introduction to Grouper Part 2: Grouper’s Core

Next Video in Grouper Online Training is: Introduction to Grouper Part 2: Grouper’s Core Access Management Capabilities Click on title above, or go to Grouper Online Training Home at <URL> 12 January 2012

Apereo Grouper Seminar Part 2 Penn and GrouperApereo Grouper Seminar Part 2 Penn and Grouper
Apereo Grouper Seminar Part 2 Penn and GrouperApereo Grouper Seminar Part 2 Penn and Grouper
Grouper Overview for SPTI March 2007 CONFIDENTIAL GrouperGrouper Overview for SPTI March 2007 CONFIDENTIAL Grouper
Grouper Overview for SPTI March 2007 CONFIDENTIAL GrouperGrouper Overview for SPTI March 2007 CONFIDENTIAL Grouper
Grouper Demographic Comparisons CONFIDENTIAL Summary Findings Grouper usersGrouper Demographic Comparisons CONFIDENTIAL Summary Findings Grouper users
Grouper Acquisition Opportunity July 2006 CONFIDENTIAL Grouper AcquisitionGrouper Acquisition Opportunity July 2006 CONFIDENTIAL Grouper Acquisition
Grouper Prosumer Expansion Opportunity CONFIDENTIAL Executive Summary GrouperGrouper Prosumer Expansion Opportunity CONFIDENTIAL Executive Summary Grouper
Grouper Overview for SPTI March 2007 CONFIDENTIAL GrouperGrouper Overview for SPTI March 2007 CONFIDENTIAL Grouper
Grouper 3 0 Vision Execution Establish Grouper asGrouper 3 0 Vision Execution Establish Grouper as
Grouper Update 3 0 Overview CONFIDENTIAL 1 GrouperGrouper Update 3 0 Overview CONFIDENTIAL 1 Grouper
Using Signet and Grouper for Access Management TomUsing Signet and Grouper for Access Management Tom