How The University of Arizona Addressed SSO for Office 365
Time 10/16/17 09:00AM-09:50AM
In the course of planning our campus deployment for Microsoft's Office 365 (O365), we determined that our SSO needs didn't align well with the "standard" sign-on models for O365. Complicating factors--such as multiple user authentication sources, a desire to leverage an existing two-factor-authentication solution, and a need to support legacy clients--led us to explore alternative solutions to the standard models. O365's SAML 2.0 Federation support allowed us to leverage Shibboleth IdP v3 which, with its support for "scriptable" flows and "pluggable" authentication frameworks, provided the flexibility and customizability needed to meet our requirements. This presentation will cover the Shibboleth IdP configuration necessary to implement our O365 SSO use cases, and how we leveraged modern tools and services (e.g., Docker, AWS' EC2 Container Service) to manage the deployment and maintenance of the IdP infrastructure.
Speaker Gary Windham University of Arizona
Primary track Trust and Identity