2017 Technology Exchange

close
Use Internet2 SiteID

Already have an Internet2 SiteID?
Sign in here.

Internet2 SiteID

Your organization not listed? Create a local account to use Internet2 services.

Create SiteID

How The University of Arizona Addressed SSO for Office 365

Time 10/16/17 09:00AM-09:50AM

Room Bayview A

Session Abstract

In the course of planning our campus deployment for Microsoft's Office 365 (O365), we determined that our SSO needs didn't align well with the "standard" sign-on models for O365. Complicating factors--such as multiple user authentication sources, a desire to leverage an existing two-factor-authentication solution, and a need to support legacy clients--led us to explore alternative solutions to the standard models. O365's SAML 2.0 Federation support allowed us to leverage Shibboleth IdP v3 which, with its support for "scriptable" flows and "pluggable" authentication frameworks, provided the flexibility and customizability needed to meet our requirements. This presentation will cover the Shibboleth IdP configuration necessary to implement our O365 SSO use cases, and how we leveraged modern tools and services (e.g., Docker, AWS' EC2 Container Service) to manage the deployment and maintenance of the IdP infrastructure.

Speakers

Speaker Gary Windham University of Arizona

Presentation Media

Primary track Trust and Identity

gold Sponsors

bronze Sponsors