Federated User Account Management

Karasawa Mizuki; Hover John; Misawa Shigeki

doi:10.1051/epjconf/202024507058

EPJ Web of Conferences (Jan 2020)

Federated User Account Management

Karasawa Mizuki,
Hover John,
Misawa Shigeki

Affiliations

Karasawa Mizuki: Brookhaven National Laboratory, Upton
Hover John: Brookhaven National Laboratory, Upton
Misawa Shigeki: Brookhaven National Laboratory, Upton

DOI: https://doi.org/10.1051/epjconf/202024507058
Journal volume & issue: Vol. 245
p. 07058

Abstract

Read online

BNL SDCC (Scientific Data and Computing Center) recently deployed a centralized identity management solution to support Single Sign On (SSO) authentication across multiple IT systems. The system supports federated login access via CILogon and InCommon and multi-factor authentication (MFA) to meet security standards for various application and services such as Jupyterhub / Invenio that are provided to the SDCC user community. CoManage (cloud-based) and FreeIPA / Keycloak (local) are utilized to provided complex authorization for authenticated users. This talk will focus on technical overviews and strategies to tackle the challenges/obstacles in our facility.

Published in EPJ Web of Conferences

ISSN: 2100-014X (Online)
Publisher: EDP Sciences
Country of publisher: France
LCC subjects: Science: Physics
Website: http://www.epj-conferences.org/

About the journal