Federated Shibboleth, OpenID, oAuth, and Multifactor
Time 10/01/12 03:00PM-04:00PM
Managing guest access to institutional resources can be challenging. Most services normally would require an institutionally sponsored guest account. What if we simplified and externalized these accounts while still maintaining a decent degree of access control?
Federated login via OpenID, oAuth, and external Shibboleth IdPs can be used as authentication alternatives to an institutional Shibboleth IdP. A standard Shibboleth service provider can request various types of authentication for access to certain protected resources, and in some cases, more than one authentication type can be required. Data from the institutional directory can be used to seamlessly enrich the login experience and enable fine-grained access controls, all with minimal deployment complexity for departmental uses.
Speaker Russ Beall University of Southern California