Enhancing Security and Access Control with IRIS IAM

what can the iris iam do for you n.w
1 / 15
Embed
Share

Explore the capabilities of IRIS IAM, an authorization and authentication infrastructure providing security and access control functionalities. Learn about the progress, desired integrations, and benefits of connecting services to IAM. Dive into Command Line Integration and Access for optimal security protocols.

  • Security
  • Authorization
  • Authentication
  • Integration
  • IAM
rayaanacharya
guzzardo_j Follow

Uploaded on | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. What can the IRIS IAM do for you IRIS Technical Working Group 14th July 2020 Tom Dack

  2. IRIS IAM The IRIS IAM (Identity and Access Manager) is an authorization and authentication infrastructure (AAI) which provides a range of security and access control functionality to the services which make up the IRIS infrastructure. After a year of development, the IAM is now a working and usable authentication solution with operational funding to support it.

  3. FY2020 Progress The 2020 Digital Asset focuses around improving the service the IAM can offer IRIS. Work has been undertaken to improve the IAM service Host monitoring and logging have been improved Feedback from IRIS users and services is being fed back into the EOSC-funded Dashboard development This has also fed into the provision of a registration support page Work underway to support new communities First steps to move LSST behind IAM FAIRdata forum (part of FAIRsFAIR) has implemented IAM for authentication Command Line work has been started by Jens & Will Preparation for IAM 2.0, including an Aquilon feature for Keycloak deployment

  4. Connecting your Service to IAM It is in most cases very easy to connect any web based services to the IRIS IAM. The IAM utilises the standard OAuth/OIDC flows, present on most modern software and easy to implement with Apache Any IAM user can register a client INDIGO IAM documentation here: https://indigo- iam.github.io/docs/v/current/user-guide/client-registration.html Please contact us if you have any questions! iris-iam-support@gridpp.rl.ac.uk Command line connectivity is being developed by Jens and Will The aim is to have this available later this year

  5. Command Line Integration General issues From Jens Usability CLI is for "expert users"? Migration traditionally uses X.509/GSI Expect to need >1 protocol, to cover different services/use cases Account (de)provisioning Managing authorisation Standards and Interoperation Most profiles are technology agnostic and should work with both SAML and OIDC Technologies ssh plugins (including Assent)

  6. Command Line Access - authentication ssh client ssh server browser IAM

  7. Command Line Access - authentication browser IAM ssh ssh client ssh server

  8. Command Line Access - authentication browser IAM https WS client WS server

  9. Command Line Access browser IAM ssh client ssh server

  10. Command Line Access - authentication browser IAM ssh client ssh server Direct access bypasses IAM

  11. Command Line Access ssh client UI ssh server data job

  12. IAM Service Access End user service ssh IRIS IaaS

  13. FY2020 Next Steps Improve support around the IAM service to project service capabilities Documentation as to what the service can offer and how to use it IRIS IAM as AuthN/Z for the IRIS website and Indico? Work with LSST and other services to integrate IAM Further testing of SSH capabilities, with the aim to connect to services later this year Migration to INDIGO IAM 2.0 when released

  14. Thank you Facebook: Science and Technology Facilities Council Twitter:@STFC_matters YouTube: Science and Technology Facilities Council

Related


Industrial Training Final Briefing Semester 2 - Important Information for Students

Industrial Training Final Briefing Semester 2 - Important Information for Students

grover
Partnership Final Account

Partnership Final Account

aranza
WISEstaff Data Collection and Certification Process Overview

WISEstaff Data Collection and Certification Process Overview

katrina
Final Submission Forms Workbook Guidance for NYSED Projects

Final Submission Forms Workbook Guidance for NYSED Projects

asmodeus
Spring 2015 English 110 Final Exam Information

Spring 2015 English 110 Final Exam Information

zipporah
Mastering Final Focus in Debates

Mastering Final Focus in Debates

jonty
Data Montgomery Experience Final Report Presentation

Data Montgomery Experience Final Report Presentation

maximo
Exam Boards and Degree Classifications

Exam Boards and Degree Classifications

dilan
Final Accounts Preparation in Business

Final Accounts Preparation in Business

dale
Innovating Media Buyer Tracking System - Final Project Summary

Innovating Media Buyer Tracking System - Final Project Summary

patience
Structured Final Seminar Presentation Guidelines

Structured Final Seminar Presentation Guidelines

lile
Efficient Management of Final Payments and Project Closure

Efficient Management of Final Payments and Project Closure

nune_li
EE 319K Final Exam Review and Competition Details

EE 319K Final Exam Review and Competition Details

justi
Phonetic Final Devoicing and Its Implications in Phonological Theory

Phonetic Final Devoicing and Its Implications in Phonological Theory

eil_l
AEV Presentation: Final Design and Coding Process Overview

AEV Presentation: Final Design and Coding Process Overview

cnak
Advanced Topics in Communication Systems: Lecture 18 Overview and Final Exam Details

Advanced Topics in Communication Systems: Lecture 18 Overview and Final Exam Details

smiha
Effective Final Exam Preparation Strategies for Success

Effective Final Exam Preparation Strategies for Success

gio_g
StarCraft AI Competition 2011: Final Round Results and Rankings

StarCraft AI Competition 2011: Final Round Results and Rankings

nyza_17
University of Pittsburgh CS 0441: Discrete Structures Homework Set #8 and Final Review

University of Pittsburgh CS 0441: Discrete Structures Homework Set #8 and Final Review

geri
ECE454 Computer Systems Programming Final Review by Ding Yuan

ECE454 Computer Systems Programming Final Review by Ding Yuan

petralia_k

More Related Content