Educause Security Discussion
mailing list archives
Re: Multiple campus SSO security requirements
From: Greg Vickers <g.vickers () QUT EDU AU>
Date: Tue, 4 Nov 2008 10:22:25 +1000
Stewart, Ian wrote:
We are considering multi-campus web-SSO system that allows an end-user
to authenticate using their home campus LDAP account or another campus
LDAP account they may hold Has anyone implemented such a system and
how have you dealt with the trust issues between campuses that this
creates? For example, each campus may have their upfront ID-issuing or
vetting process reviewed by all the other campuses and an agreement
signed before they are allowed to participate, as in a federation. Any
thoughts on this issue would be welcome.
The Queensland University of Technology has developed the Enterprise
Sign On Engine (ESOE - http://esoeproject.org/), an open source identity
management, SSO, auth, federation and accountability system.
ESOE is now used at QUT as the primary method of authenticating most
services and resources and may be able to meet your needs. I've cc'd
Intient.com in this message as the lead designer is now with this
company, and they should be able to help you.
Phone: +61 7 3138 6902
IT Security Engineer & Project Manager
Queensland University of Technology, CRICOS No. 00213J