|
|
|
|
Identity provisioning and deprovisioning are a necessity for building modern authentication and authorization infrastructures. They are straightforward yet technically complicated part of identity and access management. The basic idea is to deliver identity and authorization information to the managed services, which is complicated by a lack of applicable standards in this area. Therefore, most of the Identity and access management solutions rely on a custom solution for provisioning. |
The goal of this activity is to create a production ready prototype based on the existing proof of concept, integrate it with eduTEAMS and provide it as an open source tool to the community. |
Identity and access management components used in GÉANT eduTEAMS are not an exception. Thus they rely on custom connectors to deliver authorization data to managed services, usually utilizing standardized protocols like SSH or LDAP. Although this solution is not technically ideal, it works for most services operated on Unix-based operating systems. For services operated on Windows OS, there might be a problem to transfer the required data to the machines unless the service itself has an API for that, which is not always the case. This topic is related to Instant User Provisioning and Deprovisioning. Where possible, technical synergies shall be identified to the benefit of both solutions. |
This product eases the way of integration IAM into Windows based systems. It enables identity management systems to interact directly with services hosted on Windows and allows administrators to easily mange these systems. This can not only be used directly by institution with existing IDM in place, but also by GÉANT services like eduTEAMS. |
|
|
|
The aim of this project is to create an easy to use, adoptable software solution to provision server users and provide this tool to the community. As part of a case study the solution will be implemented for a Czech University (Faculty of informatics MU) which will continue to use the solution afterwards. CESNET will continue to use and maintain the software for the foreseeable future. Besides this, the solution shall be adjusted to the needs of eduTEAMS. The solution will be provided to the eduTEAMS service task to be integrated into the GÉANT service. |
The following results were created and delivered:
|
Date | Activity | Owner | Minutes |
---|---|---|---|
13 Nov 2019 | Kickoff meeting | - | |
Every Friday | Weekly Scrum | - | |
Every Tuesday | Weekly Chat | - |