Conferences & Events
Events for all Levels and InterestsStay
Jump Start Your Career GrowthStay
Get on the Higher Ed IT MapStay
Uncommon Thinking for the Common Good™Stay
Filter by Publications
Filter by Presentations
Identity management refers to the policies, processes, and technologies that establish user identities and enforce rules about access to digital resources. In a campus setting, many information systems–such as e-mail, learning management systems, library databases, and grid computing applications–require users to authenticate themselves (typically with a username and password). An authorization process then determines which systems an authenticated user is permitted to access. With an enterprise identity management system, rather than having separate credentials for each system, a user can employ a single digital identity to access all resources to which the user is entitled. Federated identity management permits extending this approach above the enterprise level, creating a trusted authority for digital identities across multiple organizations. In a federated system, participating institutions share identity attributes based on agreed-upon standards, facilitating authentication from other members of the federation and granting appropriate access to online resources. This approach streamlines access to digital assets while protecting restricted resources. [Source: 7 Things You Should Know About Federated Identity Management]
- Toolkit for Developing an Identity and Access Management (IAM) Program, The IAM Program Outline has been created as a roadmap for institutions to use in developing an IAM program or to address gaps in their current offerings.
- 2011 ECAR Identity Management in Higher Education Report
- EDUCAUSE/InCommon Partnership: EDUCAUSE has partnered with the InCommon Federation to provide members who use our web resources, the benefits and ease of Federated Identity Management access.
- Identity & Access Management (IAM) Discussion Group: EDUCAUSE operates an open mailing list for general discussion of Identity and Access Management (IAM) topics and maintains a website with additional resources and links.
- IAM Tools & Effective Practices Wiki: This wiki provides a set of resources for IAM Architects to use in implementing a cohesive program on their respective campuses.
- IAM Online: IAM Online is a monthly series delivering interactive education on Identity and Access Management (IAM), including federated identity management essentials, advanced issues in IAM, and hot topics from the EDUCAUSE community. Experts will provide overviews, answer questions and lead discussions.
- InCommon: The InCommon Federation eliminates the need for researchers, students, and educators to maintain multiple passwords and usernames. Online service providers no longer need to maintain user accounts. Identity providers manage the levels of their users' privacy and information exchange. InCommon also offers a Certificate Service for the higher education community. InCommon also offers a Certificate Service for the higher education community, as well as a number of training and education programs such as CAMP.
- The Information Security Guide, maintained by the Higher Education Information Security Council (HEISC), includes a chapter on Access Control.
- National Strategy for Trusted Identities in Cyberspace (NSTIC): Resources include a July 2011 response to the Department of Commerce Notice of Inquiry for Models for a Governance Structure for NSTIC (prepared by EDUCAUSE, Internet2, and InCommon).
- Shibboleth®: The Shibboleth System is a standards based, open source software package for web single sign-on across or within organizational boundaries. It allows sites to make informed authorization decisions for individual access of protected online resources in a privacy-preserving manner.
- US Trust Federations: This community collaboration group is exploring the building of federations within and across state boundaries. Invited participants include StateNets and Higher Education Systems staff. This effort is supported by Internet2, EDUCAUSE, and InCommon.
Library Items on this Topic
EDUCAUSE Library Items for Federated Identity Management
- Identity Management in Higher Education 2010 Survey Questionnaire
March 23, 2010
This March 2010 survey is a critical component of the 2010 EDUCAUSE Center on Applied Research (ECAR) follow-up to its 2006 baseline study of identity management in higher education. The 2006 st…
- Shibboleth: Federated Identity Management
January 1, 2004
Shibboleth, a standards- and Web-based inter-institutional authorization architecture and software, enables federated resource sharing. This session will provide an overview of Shibboleth, federati…
- Shibboleth: Federated Identity Management
January 1, 2004
Shibboleth, a standards- and Web-based inter-institutional authorization architecture and software, enables federated resource sharing. This session will provide an overview of Shibboleth and feder…
- An Interview with Susan Perry at CNI's 2005 Fall Task Force Meeting
December 13, 2005
In this 23 minute recording, we'll hear from Susan Perry about her work with CLIR , NITLE and Mellon . We'll also get her thoughts on preservation and stewardship of digi…
- IAM Working Group Community Update
October 14, 2010
A session at the EDUCAUSE 2010 Annual Conference
The Identity and Access Management Working Group provides community leadership on topics related to identity and access management, including policies, processes, technologies, and effective practi…
- Federated Identity Management: Addressing the Risky Business
April 14, 2010
A session at the Security 2010
With increased losses in PII data, regulatory compliance, and SaaS, the protection of identities becomes paramount for security professionals. Accessing restricted resources held by a partner can b…
- Shibboleth Access to Licensed Library Resources Through InCommon
January 15, 2010
A session at the EDUCAUSE Mid-Atlantic Regional Conference 2010
Phase 2 of the InC-Library Initiative (https://spaces.internet2.edu/display/inclibrary/InC-Library) is focused on defining best practices for access to protected e-resources via federated identity …
- Stage 5: Federating the Identity: What Does This Mean, What Are the Challenges, and Why You Should Care
February 5, 2009
A session at the CAMP: Delivering, Sourcing, and Securing Services Throughout
Federations provide the trust framework, common definitions, and standards-based transport mechanisms for sharing information about our constituents with other institutions. But what does this real…
- Seminar 03P - Creative Sourcing for Small Schools: Managing Access to Off-Campus Service Providers PLEASE NOTE: Separate registration and fee is required to attend this seminar.
October 28, 2008
A session at the EDUCAUSE 2008 Annual Conference
Small schools typically have fewer IT staff and resources to address a business challenge and need to think creatively about how to support the growing number of applications their constituents are…
- Federated Identity: Leveraging Shibboleth to Access On- and Off-Campus Resources
January 16, 2008
A session at the EDUCAUSE Mid-Atlantic Regional Conference 2008
More and more institutions are using Shibboleth to address both their on-campus and third-party access requirements. This case study will provide information about federated identity management (sp…