adding institution support in sfx for shibboleth sso

Adding institution support in SFX for Shibboleth SSO Michael Zach, Jan Krajíc, Jiří Pavlík Charles University in Prague Computer Science Centre

Upload: nissim-hewitt

Post on 31-Dec-2015

17 views

Category:

Documents

0 download

Report

Download

Embed Size (px):

DESCRIPTION

Adding institution support in SFX for Shibboleth SSO. Michael Zach, Jan Krajíc, Jiří Pavlík. Charles University in Prague Computer Science Centre. What is this about?. SFX consortia shared instance off-campus access Shibboleth SSO eduID.cz (Czech academic identity federation) - PowerPoint PPT Presentation

TRANSCRIPT

Adding institution support in SFX for Shibboleth SSO

Michael Zach, Jan Krajíc, Jiří Pavlík

Charles University in PragueComputer Science Centre

Page 2: Adding institution support in SFX for Shibboleth SSO

What is this about?

● SFX

● consortia

● shared instance

● off-campus access

● Shibboleth SSOo eduID.cz (Czech academic identity federation)

o CESNET (Czech Education and Scientific NETwork)

Page 3: Adding institution support in SFX for Shibboleth SSO

Past presentations

● Jiri Pavlik:o Shibboleth session at Ghent, 2010

a plan for setting up

o Shibboleth SSO - Charles University case study, Haifa 2011 set up description

Page 4: Adding institution support in SFX for Shibboleth SSO

Uniform Information Gateway (UIG)

● National portal of library network in Czech Republic (www.jib.cz)

● project of Czech National Library & Charles University in Prague (*2003)

● 30 registered libraries

● MetaLib Plus and MetaLib search engine & Primo Central Index

● 1 SFX instance, using institutes feature

Page 5: Adding institution support in SFX for Shibboleth SSO

UIG - SFX set up

● institutes● library proxies (EZProxy)● Czech National Library Identity Provider● e-journals and e-books AZ for registered

organisations● Google Scholar registration

Page 6: Adding institution support in SFX for Shibboleth SSO

UIG - SFX institutes

● On / off-campus accesso no IP ranges

● activation targets for:o DEFAULT & INSTITUTEo & Authentication note

availability info for everybody

institutional AZ Listsinstitutional exportsinstitutional Proxiesinstitutional GS

Page 7: Adding institution support in SFX for Shibboleth SSO

UIG - SFX set up

Page 8: Adding institution support in SFX for Shibboleth SSO

The solution

● SFX is not supporting institutes feature for off-campus access

● our local solution → pull-down menu in SFX menu

Page 9: Adding institution support in SFX for Shibboleth SSO

The solution

Page 10: Adding institution support in SFX for Shibboleth SSO

Page 11: Adding institution support in SFX for Shibboleth SSO

Libraries

(by CESNET)

Single Sign-On

Page 12: Adding institution support in SFX for Shibboleth SSO

From inside

● Perl script (institutes.cgi)● Perun - Identity and Access Management System

o perun.cesnet.cz

● cookie “sfx_institute”

● iframe in a template

Affected templates

../templates/simplified_template1/sfxmenu.tmpl

../templates/simplified_template1/mobile/sfxmenu.tmpl

Page 13: Adding institution support in SFX for Shibboleth SSO

Future development

● Enhancement Requesto Assigning Identity providers to institutes as proxy

more than one IdP per instanceo Including name of institute into Auth. note

● Future of UIGo transformation UIG into new Central Portal of

Libraries→ Discovery system

Page 14: Adding institution support in SFX for Shibboleth SSO

Sharing

● implementation support into global SFX?

● Code Share

Page 15: Adding institution support in SFX for Shibboleth SSO

Michael Zach, [email protected]

“Thank you. Questions”

Evaluating the Efficiency and Effectiveness of a Federated ... · the Shibboleth as SSO service. Throughout this investigation, the authors have applied a triangula-tion to find out

は SFX-P27 じめに SFX-P270 - Panasonic › manualdl › p-db › SF › SFX-P27.pdf · 2015-01-20 · sfx-p27 sfx-p270 品番ファクシミリ取扱説明書 sfx-p270 sfx-p27

ProQuest Pivot now supports Shibboleth S · 2017-10-23 · ProQuest Pivot now supports Shibboleth Single Sign-On. What is Shibboleth? Shibboleth is the world's most widely deployed

Introduction to Shibboleth - SWITCH...• •SAML 2.0 • SSO ... Introduction to Shibboleth - Shibboleth Training 2015 Author: SWITCHaai Created Date: 20151015071708Z

7 October 2015 Shibboleth. Agenda Shibboleth Background and Status Why is Shibboleth Important (to Higher Ed)? Current Pilots Course Management

Shibboleth SP Logout Support - Shibboleth Training …...Current state of SLO in Shibboleth Shibboleth Service Provider 2.5.x • Supports local and global logout Shibboleth Identity

Shibboleth SSO and Drupal

Shibboleth: Molecules, Music, and Middleware. Outline ● Terms ● Problem statement ● Solution space – Shibboleth and Federations ● Description of Shibboleth

1 Shibboleth-aware Portals S P I E Information Environments Shibboleth-WS vs. WS-Shibboleth vs. SAML 2.0 SSO with Constrained Delegation JISC Core Middleware

Service Web SFX mai 2012. Service Web SFX - Local Le service Web SFX permet dinterroger les bases SFX locales afin de vérifier si un document en texte

SFX Web Service May 2012. SFX Web Service - Local The SFX Web Service enables local SFX databases to be queried to determine whether a document is available

inhabitants Located in the Alingsås west part ... - Alfrescopages.alfresco.com/rs/alfresco/images/Alfresco-Day-Stockholm-12th... · ECM – Alfresco CMS - Drupal SSO - Shibboleth

Acceso a la plataforma Scopus utilizando PAPI/Shibboleth ...proyectos.bibliotecas.csic.es/.../file/...scopus_1.pdf · (SFX)” que aparece en los resultados de una búsqueda en base

David Kennedy, UMD Shibboleth and Library Resources Internet2 Library/Shibboleth Project

eduroam Delegate Authentication System with Shibboleth SSO

MORANI SFX

Shibboleth Update

Shibboleth SSO & Drupal

Shibboleth Archive

1 eduroam Delegate Authentication System with Shibboleth SSO Hideaki Goto, Hideaki Sone Tohoku Univ. / NII Ichiro Yamaguchi, Takaaki Suzuki Tohoku Univ

Sfx socialmedia

Shibboleth SSO - Charles University case study

SFX @ CASPUR

Shibboleth SSO - Charles University case study · 2018-01-22 · Shibboleth SSO - Charles University case study Jiri Pavlik CESNET / Charles University Computer Centre Haifa University,

Using Shibboleth as an SSO University at Buffalo Joel Murphy [email protected]

Shibboleth Tutorial

Using Shibboleth as an SSO

ZIMT-Beratung Shibboleth-Anleitung Shibboleth Anleitung am ...bibliothek.ph-weingarten.de/pdf/Shibboleth AnleitungPH_1.pdf · SLIChbeçriff eingeben, z a. Social Media Kaufstudien

Shibboleth. Agenda Shibboleth? Single-Sign-On SAML & Co. Shibboleth Eigenschaften Architektur & Komponenten Implementierungen Kommunikation

ISLE Open Educational Resources · • IOER and the ISLE K-12 Dashboard both use a Shibboleth 2 Service Provider (SP) as the other half of the SSO process. 12 SSO with ISLE K-12 Dashboard

Title ShibbolethによるOﬃce365 Educationのシング …...認証連携 SSO Toolkit Shibboleth, ADFS ライセンス無償有料プランありメールサーバー Exchange

[email protected] SFX @ CASPUR Configurazione per gli Enti CIBER

Memoire Shibboleth

Présentation de Shibboleth - Services · Le fournisseur d’identités 2. Le fournisseur de services 3. Le service de découverte 4. Échanges au format SAML Référentiels SSO 1

Shibboleth Identity Provider Version 3 IAM Online March 11, 2015 Scott Cantor, Shibboleth Development Team Marvin Addison, Shibboleth Development Team