Blog from September, 2015

Shibboleth 3.x Identity Provider: Two Campus Case Studies on Implementation
Dean Woodbeck (internet2.edu) posted on Sep 16, 2015

Shibboleth 3.x Identity Provider: Two Campus Case Studies on Implementation

Internet2 Trust & Identity Solution Provider Webinar: Unicon
(formerly known as InCommon Affiliates)
Wednesday, September 23, 2015
2 pm ET | 1 pm CT | Noon MT | 11 am PT

http://internet2.adobeconnect.com/affiliate (slides and audio)

The next InCommon Affiliate webinar, now part of the Internet2 Industry Program, will take place September 23 and feature Unicon and two campus case studies on Shibboleth IdPv3 adoption.

Many higher education institutions have adopted (or are planning on adopting) Shibboleth 3.x Identity Provider (IdP) due to the end-of-life of security patches for Shibboleth 2.x IdP in July 2016. In this webinar, Unicon’s Johnathan Johnson, senior software engineer, will present with representatives from Portland State University and The University of Chicago on each institution’s journey with implementing Shibboleth 3.x IdP.

  • Unicon collaborated with Portland State University to deploy Shibboleth 3.x IDP, utilizing both its SAMLv2 and Central Authentication Service (CAS) protocol support. Unicon also incorporated a Hazelcast backend, to provide a trouble-free shared session service that allows multi-node/High Availability IdP deployment supporting both SAMLv2 and CAS.
  • Unicon worked together with The University of Chicago to forward-port their existing Shibboleth 2.x IDP configuration to 3.x IdP, and built a Docker (container) image of IdP incorporating that configuration allowing for easy deployment of an updated image (and easy rollback if needed).


Presenters

Johnathan Johnson, Unicon, Inc.
Representatives from the University of Chicago and Portland State University

Phone Back-up

Audio will be available via Adobe Connect. There is a dial-in back-up:

734-615-7474, or 866-411-0013
PIN: 0105266#

About Unicon

Unicon, Inc. is a leading provider of IT consulting, services, and support for education technology and works with institutions and organizations to find solutions to meet business challenges. Unicon provides services and support for identity and access management (IAM) solutions including Central Authentication Service (CAS), Shibboleth, and Grouper. Unicon specializes in using open source technologies to deliver flexible and cost-effective systems in the areas of IAM, student success, mobile computing, learning management systems, portals, online video, calendaring, email, and collaboration. Learn more at www.unicon.net.

About the Internet2 Trust & Identity Solution Providers
(formerly InCommon Affiliates)

Internet2 Trust & Identity Solution Providers, formerly known as InCommon Affiliates, are part of the Internet2 Industry Program. These providers offer software, support, integration, and consulting related to identity and access management, and other trust services. You can learn more about this program at www.incommon.org/affiliates.

InCommon Shibboleth Installation Workshop Oct 19-20 in Arlington, Texas
Dean Woodbeck (internet2.edu) posted on Sep 01, 2015

Register Now for InCommon Shibboleth Installation Workshop in Arlington, Texas

October 19-20, 2015
The University of Texas at Arlington
www.incommon.org/shibtraining

Registration is open for the InCommon Shibboleth Installation Workshop, October 19-20, at the University of Texas at Arlington. This two-day training session covers both the Identity Provider and Service Provider software, as well as some integration issues. The IdP portion of the workshop is based on the new IdPv3.

Shibboleth has changed and we will focus the training sessions on people who wish to learn about and eventually deploy the new version. Those interested in upgrading from v2.x will also find value, but we will mainly cover IdPv3 as an independent topic to ensure we deliver the clearest content possible. Here is what you can expect:

  • A two-day, directed self-paced workshop
  • Hands-on installation of the identity provider and service provider software
  • Experienced trainers providing overviews and one-on-one help
  • Discussions on configuration and suggested practices for federation
  • Attendance is limited to 40

The workshops will offer the chance to:

  • Install a prototype Shibboleth identity or service provider in a virtual machine environment
  • Discuss how to configure and running the software in production
  • Learn about integration with other identity management components such as LDAP and selected service providers

Knowledge of identity management concepts and related implementation experience is strongly recommended. Organizations are encouraged to send one or two attendees who best represent the following functions:

  • System install, integration, and ongoing support staff
  • Campus technology architects

For more information and a link to register, go to www.incommon.org/shibtraining.

To learn more about Shibboleth, see the Shibboleth wiki (wiki.shibboleth.net). More information on federated identity can be found at www.incommon.org.