Authentication
Objective | Set-up authentication between the Digital Archives and local campus Shibboleth (or other SAML-based) identity providers (IdP). |
Due date | 01 Aug 2023 |
Key outcomes | Campus identity management groups will configure their local IdP to authenticate with the Digital Archives. |
Status |
|
Problem Statement
Campus users will need to authenticate in order to upload new submissions or access restricted / embargoed materials in the Digital Archives.
Scope
Must have:
SP metadata published to InCommon.
All campuses – whether they have immediate plans to use Digital Archive or not – configured with release attributes similar to those of ScholarWorks
Not in scope:
Non-SAML based systems such as CAS or LDAP
Milestones and deadlines
Milestone | Owner | Deadline | Status |
|---|---|---|---|
SSL certificate | Mar 20, 2023 | done | |
Set-up Digital Archives Shibboleth SP | Mar 20, 2023 | done | |
Register Digital Archives with InCommon | Marcus Mizushima | Apr 28, 2023 | done |
Initial testing with Chancellor’s Office IdP | David Walker | May 19, 2023 | done |
Provide documentation for configuring local IdP with release policy | May 19, 2023 | done | |
Distribute information to campus IdM groups | Marcus Mizushima | Jun 9, 2023 | done |
Library contacts to follow up with campus IdM groups | Jun 30, 2023 |
| |
Manual exchange of metadata with Okta & Azure campuses | Jul 21, 2023 |
| |
All campuses authenticating properly | Aug 1, 2023 |
|
Reference materials
CSUConnect Service Provider Registration Document