Events for all Levels and InterestsStay
Jump Start Your Career GrowthStay
Get on the Higher Ed IT MapStay
Uncommon Thinking for the Common Good™Stay
Filter by type
Filter by Presentations
Filter by Library Taxonomy
- Identity and Access Management [x]
- Shibboleth [x]
- Cybersecurity (37)
- Middleware (37)
- Network Applications (37)
- Networking and Emerging Technologies (37)
- Authentication (21)
- Authorization (12)
- Single Sign On (SSO) (9)
- Information Technology Management and Leadership (4)
- Campus Policy and Law (3)
- Policy and Law (3)
- Collaboration (2)
- Implementation (2)
- Information Systems and Services (2)
- Libraries and Technology (2)
- Network Security and Applications (2)
- Policy Development (2)
- Resource Sharing (2)
- Technology Selection (2)
Identity management refers to the policies, processes, and technologies that establish user identities and enforce rules about access to digital resources. In a campus setting, many information systems–such as e-mail, learning management systems, library databases, and grid computing applications–require users to authenticate themselves (typically with a username and password). An authorization process then determines which systems an authenticated user is permitted to access. With an enterprise identity management system, rather than having separate credentials for each system, a user can employ a single digital identity to access all resources to which the user is entitled. Federated identity management permits extending this approach above the enterprise level, creating a trusted authority for digital identities across multiple organizations. In a federated system, participating institutions share identity attributes based on agreed-upon standards, facilitating authentication from other members of the federation and granting appropriate access to online resources. This approach streamlines access to digital assets while protecting restricted resources. [Source: 7 Things You Should Know About Federated Identity Management]
- Toolkit for Developing an Identity and Access Management (IAM) Program, The IAM Program Outline has been created as a roadmap for institutions to use in developing an IAM program or to address gaps in their current offerings.
- 2011 ECAR Identity Management in Higher Education Report
- EDUCAUSE/InCommon Partnership: EDUCAUSE has partnered with the InCommon Federation to provide members who use our web resources, the benefits and ease of Federated Identity Management access.
- Identity & Access Management (IAM) Discussion Group: EDUCAUSE operates an open mailing list for general discussion of Identity and Access Management (IAM) topics and maintains a website with additional resources and links.
- IAM Tools & Effective Practices Wiki: This wiki provides a set of resources for IAM Architects to use in implementing a cohesive program on their respective campuses.
- IAM Online: IAM Online is a monthly series delivering interactive education on Identity and Access Management (IAM), including federated identity management essentials, advanced issues in IAM, and hot topics from the EDUCAUSE community. Experts will provide overviews, answer questions and lead discussions.
- InCommon: The InCommon Federation eliminates the need for researchers, students, and educators to maintain multiple passwords and usernames. Online service providers no longer need to maintain user accounts. Identity providers manage the levels of their users' privacy and information exchange. InCommon also offers a Certificate Service for the higher education community. InCommon also offers a Certificate Service for the higher education community, as well as a number of training and education programs such as CAMP.
- The Information Security Guide, maintained by the Higher Education Information Security Council (HEISC), includes a chapter on Access Control.
- National Strategy for Trusted Identities in Cyberspace (NSTIC): Resources include a July 2011 response to the Department of Commerce Notice of Inquiry for Models for a Governance Structure for NSTIC (prepared by EDUCAUSE, Internet2, and InCommon).
- Shibboleth®: The Shibboleth System is a standards based, open source software package for web single sign-on across or within organizational boundaries. It allows sites to make informed authorization decisions for individual access of protected online resources in a privacy-preserving manner.
- US Trust Federations: This community collaboration group is exploring the building of federations within and across state boundaries. Invited participants include StateNets and Higher Education Systems staff. This effort is supported by and .
Library Items on this Topic
EDUCAUSE Library Items for Identity and Access Management
- Shibboleth Case Studies
June 25, 2007
Building on the phases of deployment, campus representatives will describe their experiences in implementing and using Shibboleth, including their business drivers and case, policy and process, and…
- The Identity Landscape: Shibboleth in Context
June 27, 2007
Now that you have an understanding of the intra- and intercampus use of Shibboleth, what are others doing in the government, industry, and education sectors (both nationally and internationally), a…
- Introduction to Shibboleth and Phases for Deployment
June 25, 2007
This session will provide an overview of the Shibboleth System software, its role within an IdM infrastructure, related concepts, the value it provides, and typical implementation sequences. Shibbo…
- Seminar 01 - Integration Technologies for Signet and Grouper PLEASE NOTE: Separate registration and fee is required to attend this seminar.
November 7, 2006
The Signet and Grouper projects each provide a quickstart package that includes enough supporting technology to make a nearly self-contained and rapidly deployed demo. We'll examine how each o…
- Seminar 02 - Introduction to Identity Management: The Big Picture PLEASE NOTE: Separate registration and fee is required to attend this seminar.
November 7, 2006
Unsure how all the parts of an identity management system fit together and would like to know more before attending the CAMP? Consider registering for "Introduction to Identity Management: T…
- Making It Real
June 28, 2006
Now that you have an understanding of the intra- and intercampus use of Shibboleth, what are others doing in the government, industry, and education sectors both nationally and internationally, and…
- Management Phase 2: Shibboleth as Attribute Delivery for Authorization
June 27, 2006
Often, the next step is to enable passing of attribute information about a user to an application for use in making local authorization decisions. While conceptually similar to having the applicati…
- Technical Phase 2: Shibboleth as Attribute Delivery for Authorization
June 27, 2006
Shibboleth retrieves attribute values from the local attribute repository, filters them using a set of attribute release policies, and transports them to a service to make an authorization decision…
- Management Phase 1: Using Shibboleth as Your WebSSO Authentication System
June 27, 2006
What are the pros and cons of running Shibboleth as your campus WebSSO authentication system? Whether you're implementing your first WebSSO or considering transitioning to a new one, this sess…
- Technical Phase 1: Using Shibboleth as your WebSSO Authentication System
June 27, 2006
What are the set of technical issues that sites must address as they deploy WebSSO authentication? Topics will range from general WebSSO considerations, to Shibboleth-related topics (advanced confi…