luna
Uploaded by
5 SLIDES
164 VUES
50LIKES

Unified Identity and Access Management at Penn State University

DESCRIPTION

Learn about the advanced information technologies and secure identity access services being managed at Penn State University. Includes the evolution of authentication mechanisms and modern components like Kerberos V and LDAP to ensure enterprise-wide digital identity.

1 / 5

Télécharger la présentation

Unified Identity and Access Management at Penn State University

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Auth/Authz at PSU Steve Kellogg Director, Advanced Information Technologies Academic Services and Emerging Technologies Information Technologies Services The Pennsylvania State University

  2. Penn State • 24 Campuses • 140,000+ users (being managed) • Single Identity; Penn State Access Account • AFS/K4 (circa 1991) • DCE/DFS (circa 1995)

  3. General Philosophy • Few scalable components • Security is very important • A single enterprise-wide digital identity • A single account and services/resources are allocated and de-allocated to the account. • Standards-based approach • A preference for build v. buy.

  4. Components • Registry/directory • Authentication system • Authorization; user and group • A secure distributed interprocess communication mechanism • A scalable, secure single filesystem integrated via the same auth/authz mechanisms

  5. Modern Components • Kerberos V • LDAP • Authorization • Attributes • Groups • Distributed IPC • HTTPS POST • XMLRPC • Filesystem?????

More Related