GN4-1 SA5: Trust and Identity Service Development
T6: Authentication and Authorisation in GEANT
Work Item 2: Requirements gathering for authorisation needs of perfSONAR (DomenicoV), AutoBAHN (Kostas S), OTRS (GEANT NOC), Sympa and ToolsPortal

Work Item: Linda Mesch and Hardi Teder

TL: Mandeep Saini

AL: Ann Harding, Deputy AL: Valter Nordh

Skeleton workplan for the part of T6 dealing with operations migrations to SA4: https://docs.google.com/spreadsheets/d/1cqW-MPPkBde5n7K47f5-EQcc7A5DDUS-bgtOizz8eg4/edit?usp=sharing

********************
Related links:

  • No labels

1 Comment

  1. Linda Mesch

    DEADLINES ACTIONS required STATUS update (% done) 1 incomplete 24 Jul 2015 1. Environment, Process and Acceptance criteria specification within SA4   2 incomplete 16 Oct 2015 2. Support Federation as a Service Transistion   3 incomplete 16 Oct 2015 3. Support eduGAIN Transisition   4 incomplete 27 Nov 2015 4. Process Review MILESTONE   5 incomplete 27 May 2016 5. Support Moonshot Transition   6 incomplete TBC  Support eduROAM Transition  

    ***********************************************************************************************************

    SA5T6: Information  Gathering for OTRS
    Fri 19June2015 10:00 - 10:30BST (30min)
    Participants: Linda Mesch (LM), Tony Barber (TB)
    Purpose: OTRS requirements of for second phase of eduroam

     - Element of work is driven by SA5T6
     - integrated with eduPKI but it is a half-way house
     - edugain users can log into after manual configuration in OTRS
     - 2nd TB would like users to be created at the point when tye request log-on to ORTS via edugain
     - Authorisation to be past by local/NREN system
     Timeline:
     - before June 2016; TB is not desperate to have this is place though it would be nice to do
     - Quite a lot of testing will be required 
    Team
     - Tony Barber plus 1 person (tbc)
    Risk
     - Be aware of immanent OTRS upgrade (01st tbc) July 2015 to version 4 and (01st tbc) December 2015 to version 5

    ************************************************************************************************************

    SA5T6: perfSONAR authorisation requirements
    Fri 19June2015 11:00 - 12:00BST (60min)
    Participants: Mandeep Saini, Trypti Kulkarni, Antoine Delvaux, Szymon Trocha, Rade Martinovic,  Hardi Teder (?)
    Apologise: Linda Mesch
    Purpose: Identify perfSONAR authorisation requirements

    Liaise with perfSONAR team in 6month time (Dec 2015)

    ***********************************************************************************************************

    SA5T6: SYMPA and Tools Portal authorisation requirements 

    From: Mandeep Saini [mailto:Mandeep.Saini@geant.org]
    Sent: 14 June 2015 00:41
    To: THIA Jean-Marie
    Cc: gn4-1-sa5-t6@lists.geant.org
    Subject: RE: [gn4-1-sa5-t6] Sympa and Voot

    Thanks for investigating Jean-Marie, I would have thought that Sympa uses Email address as subject Id but in either case we need to have a middle connector for fetching user’s auto generated id.

    Regards, Mandeep

    ***********************************************************************************************************

    From: THIA Jean-Marie [mailto:Jean-Marie.THIA@dsi.cnrs.fr]
    Sent: 12 June 2015 18:59
    To: Mandeep Saini
    Cc: gn4-1-sa5-t6@lists.geant.org
    Subject: Sympa and Voot

    Hello Mandeep,

    It should be pretty easy for Sympa to integration with Grouper as the product can use Voot as client or server. I have not gone through the Sympa documentation to see how well it is documented.

    As I am writing, I think that there will also be a mismatch on the SubjectId = coId as I suppose that Sympa uses the EPPN.

    Have a good week-end,

    Jean Marie

    ***********************************************************************************************************