Driver | Approver | Contributors | Stakeholder |
---|---|---|---|
Campus project managers | Marcus Mizushima | Campus Identity Management groups |
Objective | Set-up authentication between the Digital Archives and local campus Shibboleth (or other SAML-based) identity providers (IdP). |
Due date | 30 Jun 2023 |
Key outcomes | Campus identity management groups will configure their local IdP to authenticate with the Digital Archives. |
Status |
Problem Statement
Campus users will need to authenticate in order to upload new submissions or access restricted / embargoed materials in the Digital Archives.
Scope
Must have:
SP metadata published to InCommon.
All campuses planning to use Digital Archive configured with release attributes
Not in scope:
Non-SAML based systems such as CAS or LDAP
Milestones and deadlines
Milestone | Owner | Deadline | Status |
---|---|---|---|
SSL certificate | 20 Feb 2023 | ||
Set-up Digital Archives Shibboleth SP | 20 Mar 2023 | ||
Register Digital Archives with InCommon | Marcus Mizushima | 1 Mar 2023 | |
Provide documentation for configuring local IdP with release policy | 1 Mar 2023 | ||
Manual exchange of metadata with Okta & Azure campuses | 15 Apr 2019 | ||
All campuses authenticating properly | 28 Jun 2019 |
Reference materials
Shibboleth Identity Provider Configuration
CSUConnect Service Provider Registration Document