Internet2 Spring Meeting, Washington DC April 2003 1 NMI R2 Shibboleth recipe experience Art...
9
Internet2 Spring Meeting, Washington DC April 2003 1 NMI R2 Shibboleth recipe experience Art Vandenberg Director, Advanced Campus Services Information Systems & Technology Georgia State University [email protected]
-
Upload
annabelle-gibson -
Category
Documents
-
view
217 -
download
0
Transcript of Internet2 Spring Meeting, Washington DC April 2003 1 NMI R2 Shibboleth recipe experience Art...
Internet2 Spring Meeting, Washington DCApril 2003
1
NMI R2 Shibbolethrecipe experience
Art Vandenberg
Director, Advanced Campus Services
Information Systems & Technology
Georgia State University
Internet2 Spring Meeting, Washington DCApril 2003
2
Resources (ingredients)
• Hardware – Sun Netra X1
• Student – CS undergrad… and then some
• Myself – commitment, focus, some authority
• Shibboleth component docs
• Subscribe to recommended lists…
• Time… time… (160hrs over 5 weeks…)
Internet2 Spring Meeting, Washington DCApril 2003
3
Prep work…not shibboleth
• Hardware OS patches (GSU security regs)
• Apache, Apache Ant
• Tomcat
• Mod-jk
• SUN Java runtime environment
• … gee, and we’re not at Shibboleth yet
Internet2 Spring Meeting, Washington DCApril 2003
4
Substitutions…
• Enterprise authentication– Stub in password file (htpasswd…)– But don’t forget…
• Enterprise directory service– Recommended & desirable– But also can be stubbed in…
• (modular approach… build out)
Internet2 Spring Meeting, Washington DCApril 2003
5
Actual Shibboleth install
• Elapsed time vs actual time
• Dedicate days (if possible, don’t time slice)
• If we did it today… maybe 4…8 hrs. But it took “4 weeks”
• Reading the documentation (right…), but iterative reality and sheer focus
• You can’t install virtually; hands-on needed
Internet2 Spring Meeting, Washington DCApril 2003
6
Gotchas & practice
• “Is that what the doc said…?”
• Firewalls: SUN environment (ssadm), syntax, testing; (and, oh, have to Activate)
• Mac browsers (different, “smarter”?) – really persistent access (but not shibboleth?)
• Read the doc; install; re-read; istall again…
• Plenty of opportunity for practice… ;-)
Internet2 Spring Meeting, Washington DCApril 2003
7
Have a Goal & Purpose
• Set a goal (cf. NMI testbed deadline!)
• GSU library, which leads to…
• Galileo Statewide library (demo commit)
• Which leads to GSU Library… & JSTOR
• And Library intranet (…& IT intranet)
• …Campus Pipeline??
Internet2 Spring Meeting, Washington DCApril 2003
8
Current Goals
• v 0.8 origin
• v 0.8 target (for the library intranet)
• Enterprise authentication (JDBC realm)
• LDAP attribute authority (beyond [email protected] )
• JSTOR pilot underway
Internet2 Spring Meeting, Washington DCApril 2003
9
Benefits
• Working toward national standards
• Organizational knowledge– Shibboleth… but also, apache, tomcat, unix,
web services, …– (CS student may become IT hire!)– (old dogs like the SUN too)
• It’s just cool
