Location: Bits & Pieces Room of Sansom Place West
Shibboleth Authentication and PennGroups
Please join us to discuss: SAML, Shibboleth, Federated Identity, authentication/authorization, InCommon and PennGroups.
The Shibboleth service allows users to authenticate with their PennKey to a number of web applications. The service allows users to authenticate to these services using just one "identity" (PennName/PennKey) without sharing their password with those services. Shibboleth is one of many implementations of the Security Assertion Markup Language (SAML) - a data format for exchanging authentication and authorization information. The service provides federated single sign-on, through the InCommon federation, and attribute exchange to trusted parties.
This session will also cover a brief overview of PennGroups and will introduce some up and coming features including a new user interface and improved availability PennGroups is a central authorization system at Penn built on Internet2 Grouper. Penn applications can use PennGroups to manage who is allowed to access certain functions in the application.
Sponsored by ISC Technology Training