uk access management federation a partnership of jisc collections & edina

26
JISC Collections (Don’t shut that door) the importance of global identity to education 28 th & 29 th March 2012, UKSG, Glasgow UK Access Management Federation A partnership of JISC Collections & EDINA Mark Williams Operator Manager UK Access Management Federation

Upload: uksg-connecting-the-knowledge-community

Post on 07-Dec-2014

806 views

Category:

Technology


0 download

DESCRIPTION

 

TRANSCRIPT

Page 1: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

(Don’t shut that door) the importance of global identity to education

28th & 29th March 2012, UKSG, Glasgow

UK Access Management Federation

A partnership of JISC Collections & EDINA

Mark Williams Operator ManagerUK Access Management Federation

Page 2: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

Identity in Education

• Consider the functions of identity in the discovery to delivery process

Identity before authentication

Discovery to Delivery

rather than

Access and Authentication

“What is JISC doing about Standards on Publisher interfaces?”

• New Federation tools to support institutions and publishers

• Invite input into development of some new tools

Page 3: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

Nice tool on UKSG site – email links just like modern social networking sites.

A personal semi fictionalised journey but based on real events

Page 4: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

There is the resource - Option for institutional login. But where I am I really going to click institutional login click first or the PDF I have come for?

Page 5: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

Now I’m confused. As a student / librarian don’t we normally get this sort of thing for free?How many lost souls have paid when they didn’t have to. How many have NOT PAID. A lot of web piracy is because it is easy….Anyhow, finally pick institutional login.

Page 6: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

But yet Password front and centre.Almost looks like it is fishing for Federated credentialsIt’s UKsg so why not have UK federtion at top?

Page 7: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

Now what’s happened. It says recognized as…. But also says LOGIN still (not log out).I’m back at the start – implies I’ve failed to login (although I have).Where is the resource, I clicked on a link- didn’t pay attention to name or number -Now I’m lost.

Page 8: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

Ok start searching again – I’m lucky here- only one issue of insight to search through.

Page 9: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

Still not even on the right pageUsers don’t care about what was before or after just want to to the target.

Page 10: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

Many clicks and lengths of string later

Page 11: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

How it can be done

Login options offer types of authentication and choice of time of authentication.

Page 12: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

Inclusion of MDUI data (institution and service provider logo and branding) offer a clear journey to the user.

Page 13: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

It is now clear I have logged in as the option available now has changed to logout.

Page 14: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

Like it or not, users will come via Google

University of Toronto: 5% received info lit training

UBIRD study

They will come in anywhere in the siteand anytime during the process

Library induction

Mobile devices

Give users what they want.

You can’t control them

Page 15: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

Discovery to Delivery tm NISO

Page 16: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

Expresso recommendations

• Service Provider Open Page:

• Service Provider Identity Discovery Page:

• Service Provider Protected Page:

• Institution login page:

• Rewriting OpenURLs

• Appropriate SP and IdP Use of Branding

• Error Handling

Page 17: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

Some clever guys at Cardiff…Phil Smart and Dr Rhys Smith

Page 18: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

Wugen: What is does

• Tool for librarians to create Wayfless URLs.– A-Z lists e.g. library portal, so skip WAYF

• Automatically constructs a Wayfless URL based on provided Idp, Sp and Target.

• Quality of Wayfless URL– Different types, some subject to change more than

others.

Page 19: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

Wugen: How it works

Page 20: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

Wugen: Who runs it?

• One instance per federation, not per institution.

• Full version 1 available, but needs more testing.

• Needs work to be released by the FederationNot available in shops yet – need your

feedback!

Page 21: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

RAPTOR: The same clever guys at Cardiff

Page 22: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

RAPTOR; Why?

• Athens -> Shibboleth = loss of stats

• Stats important for making budgetary decisions about eResources

• Raptor is a Java based AuthN system log file parser

• Shibboleth, Ezproxy, OpenAthens, FreeRadius

• Future release may see some integration directly in Shibboleth

• Designed for non technical users. But will have technical components.

• Statistics per institution as well as aggregated to higher levels e.g. UK federation

Page 23: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

Page 24: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

Page 25: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

What we want from you…………...….and what we can give you

Tell us

Talk to IT

MDUI

Development feedback, use cases

Helpdesk

Tools

Page 26: UK Access Management Federation  A partnership of JISC Collections & EDINA

JISC Collections

Useful urls

Helpdesk: [email protected]

UK Federation MDUI instructions:http://www.ukfederation.org.uk/content/Documents/MDUIRecommendations

RAPTOR:http://iam.cf.ac.uk/trac/RAPTOR

WUGEN:http://iam.cf.ac.uk/urlgenerator/

NISO single sign on guidelineshttp://www.niso.org/workrooms/sso