emory university case study i2 day camp
DESCRIPTION
Emory University Case Study I2 Day Camp. November 5, 2010 John Ellis & Elliot Kendall. About Emory. Facts & Figures. Private university in suburban Atlanta ~ 13,000 undergrads, 7,000 grads Professional schools, including Medical, Law, Business, Public Health schools - PowerPoint PPT PresentationTRANSCRIPT
![Page 1: Emory University Case Study I2 Day Camp](https://reader035.vdocuments.mx/reader035/viewer/2022062501/56816417550346895dd5cde3/html5/thumbnails/1.jpg)
Emory UniversityCase StudyI2 Day Camp
November 5, 2010
John Ellis & Elliot Kendall
![Page 2: Emory University Case Study I2 Day Camp](https://reader035.vdocuments.mx/reader035/viewer/2022062501/56816417550346895dd5cde3/html5/thumbnails/2.jpg)
2
Facts & Figures
• Private university in suburban Atlanta• ~ 13,000 undergrads, 7,000 grads• Professional schools, including Medical,
Law, Business, Public Health schools• ~ 24,000 employees, including those from
our academic medical center (hospitals and clinics)
• Centralized IT, but many strong departmental IT groups
About Emory
![Page 3: Emory University Case Study I2 Day Camp](https://reader035.vdocuments.mx/reader035/viewer/2022062501/56816417550346895dd5cde3/html5/thumbnails/3.jpg)
3
Innovation
2000 2008
20xxNetComConsolidated network and phone across Emory
CIOSingle Central IT
structure across Emory
EnterpriseCommon solutions across the enterprise (IdM, Exchange)
ITIL & PMFrameworks for
process improvements
EfficiencyMore capacity
available for strategic initiatives
AlignmentTransition from foundation and
operational focus to services and business
alignment
Strategic Emory IT aligned as a
strategic business partner
Operational ExcellenceFoundationConsolidation
UTSCombined telecom
and application divisions
SSO/FedShibboleth deployed in production
Organizational Waves
InCommonAfter Identity Manager deployment, joined InCommon, completed first POP
2005 2010
GovernanceTransparent, aligned with
enterprise mission
![Page 4: Emory University Case Study I2 Day Camp](https://reader035.vdocuments.mx/reader035/viewer/2022062501/56816417550346895dd5cde3/html5/thumbnails/4.jpg)
4
Governance and Prioritization for IT Initiatives“Create a set of timely, transparent processes for IT governance and prioritization clearly aligned with the missions of Emory. Create a common business case template that can be used across Healthcare and the Academic enterprise. Develop reporting mechanisms that allow committees to understand performance of application and project portfolios.”
IT Foundation -- 2006
![Page 5: Emory University Case Study I2 Day Camp](https://reader035.vdocuments.mx/reader035/viewer/2022062501/56816417550346895dd5cde3/html5/thumbnails/5.jpg)
5
Governance
![Page 6: Emory University Case Study I2 Day Camp](https://reader035.vdocuments.mx/reader035/viewer/2022062501/56816417550346895dd5cde3/html5/thumbnails/6.jpg)
6
Standard Approach for Directory Services (ID Management, Authentication, Authorization)
Synchronize existing directories (e.g., LDAP and Active Directory) so that phone and email lookups can occur for all University and Healthcare staff, irrespective of location. Synchronize approach for assigning network IDs across the Academic and Healthcare Enterprise. Migrate existing network IDs and synchronize password credentials and expiration policies.
IT Foundation -- 2006
![Page 7: Emory University Case Study I2 Day Camp](https://reader035.vdocuments.mx/reader035/viewer/2022062501/56816417550346895dd5cde3/html5/thumbnails/7.jpg)
7
Identity Management
• Select identity management vendor; develop a phased-in approach for implementing priority modules such as provisioning and single sign-on.
• Completion Target Dates:– Proof of Concept by the end of October 2006.– Business case presented to IT Governance by
January 2007.
IT Foundation -- 2007
![Page 8: Emory University Case Study I2 Day Camp](https://reader035.vdocuments.mx/reader035/viewer/2022062501/56816417550346895dd5cde3/html5/thumbnails/8.jpg)
8
Siteminder
• In 2008, Emory had been using Siteminder for number of years
• Complex, difficult to maintain, difficult to use, and expensive
• Very low adoption rate • No benefits from "single" sign-on • Most sites used direct LDAP connections
SSO History
![Page 9: Emory University Case Study I2 Day Camp](https://reader035.vdocuments.mx/reader035/viewer/2022062501/56816417550346895dd5cde3/html5/thumbnails/9.jpg)
9
With an eye towards federation
• Wanted to provide better SSO service, improved security
• Did detailed comparison of popular options: CAS, CoSign, Siteminder, OpenSSO, Shibboleth, etc.
• Shibboleth distinguished by federation support
SSO Choice
![Page 10: Emory University Case Study I2 Day Camp](https://reader035.vdocuments.mx/reader035/viewer/2022062501/56816417550346895dd5cde3/html5/thumbnails/10.jpg)
10
Proof of Concept deployed first
• Shibboleth is complex, but well documented
• Most implementation time spent re-reading docs, packaging software
• Completely successfully in a few months, ahead of schedule
• Commercial contract implementations also available
Shibboleth Chosen
![Page 11: Emory University Case Study I2 Day Camp](https://reader035.vdocuments.mx/reader035/viewer/2022062501/56816417550346895dd5cde3/html5/thumbnails/11.jpg)
11
Our implementation
• Deployment on shared JBoss app cluster somewhat challenging
• Clustering multiple nodes with Terracotta inelegant but straightforward
• In production and stable on around half a dozen apps
• Additional apps on hold pending JBoss upgrade to fix bug inherited from old version of Tomcat
Shibboleth in production
![Page 12: Emory University Case Study I2 Day Camp](https://reader035.vdocuments.mx/reader035/viewer/2022062501/56816417550346895dd5cde3/html5/thumbnails/12.jpg)
12
• Need to support common attributes for federation – eduPerson, EPPN, etc.
• Two LDAP infrastructures.• User education – understanding SSO• Sign-off issues
Challenges
![Page 13: Emory University Case Study I2 Day Camp](https://reader035.vdocuments.mx/reader035/viewer/2022062501/56816417550346895dd5cde3/html5/thumbnails/13.jpg)
13
• Proof of concept federated authentication with Georgia Tech
• Gartner integration• InCommon Wiki
What’s Next
![Page 14: Emory University Case Study I2 Day Camp](https://reader035.vdocuments.mx/reader035/viewer/2022062501/56816417550346895dd5cde3/html5/thumbnails/14.jpg)
14
?Click to add title
Questions