APAN Home

 Building Identity Federations
 Chairman :  Brook Schofield, TERENA
 Members :  
 Objectives :  

This hands-on short course is aimed at enabling NRENs and Campus' to setup Federated Identity Infrastructure for library, campus and country services. Coverage of the tools and skills necessary to deploy identity infrastructure, including:

  • How to use simpleSAMLphp in as range of federated contexts.
  • How to offer (as well as access) services and resources in a federated community.
  • How the development of hub&spoke federated identity infrastructure can scale from the campus to the country level.

 Target Audience :  

Open for any attendees, especially application developers and staff interested in or involved with National, NREN or Campus Authentication and Authorisation Infrastructure (AAI).

 Expected Number of Participants :  30
 Agenda : This hands on course will cover:

What's an Identity Federation?   Slides
Lets start by using some federated services to give an understanding of why building your own identity federation is important. Identifying the pros and cons of each model of identity federation and the federation of services to understand models suitable for your environment.


Getting Started...   Slides
Prepare your environment for the course, including setting up your Virtual Machines, installing the supporting software and checking that you can interact with your systems and those of other participants.


simpleSAMLphp as an Identity Provider   Slides
Run through a quick setup of simpleSAMLphp, familiarising yourself with the configuration files, options and layout.


Metadata for Trust and Discovery
How does metadata support the circle of trust in a federation and how can it be used to improve the discovery of your identity provider. Some coverage of metadata management tools will be included.


Federating Services Options and Software
You're federation will need services! By exploring applications that supports federated identity and the tools that can be used to add federated identity to existing software you can adapt the range of collaboration tools and services that your users demand.


How to run your own course   Slides
The materials and VM infrastructure shown in this short hands-on session can be taken away and re-used for further self-study and to run a more extensive training event. We'll wrap-up by showing what's currently on offer and how to use it in your own environment.


 Remarks :  

Network connectivity for all participants. The attendees will be able to run Virtual Machines on their own laptops or use the TATA InstaCompute service to run a Virtual Machine. TATA Communications has agreed to host VMs and allow participants to continue to have access after the event for a period of time to develop their federation infrastructure.

© Copyright 2009 - 2011 APAN | | Last updated: 5 Aug 2011