Skip to Content.

edugain-discuss - Re: [eduGAIN-discuss] Best Current Practices Guide for Joining eduGAIN as a Federation (eduGAIN wiki)

edugain-discuss AT lists.geant.org

Subject: An open discussion list for topics related to the eduGAIN interfederation service.

List archive


Re: [eduGAIN-discuss] Best Current Practices Guide for Joining eduGAIN as a Federation (eduGAIN wiki)


Chronological Thread 
    < Chronological >      < Thread >
  • From: Nick Roy <nroy AT internet2.edu>
  • To: Ioannis Kakavas <ikakavas AT noc.grnet.gr>, "edugain-discuss AT geant.net" <edugain-discuss AT geant.net>
  • Subject: Re: [eduGAIN-discuss] Best Current Practices Guide for Joining eduGAIN as a Federation (eduGAIN wiki)
  • Date: Tue, 20 Oct 2015 21:49:21 +0000
  • Accept-language: en-US
  • Authentication-results: spf=none (sender IP is ) smtp.mailfrom=nroy AT internet2.edu;
  • List-archive: <https://mail.geant.net/mailman/private/edugain-discuss/>
  • List-id: "An open discussion list for topics related to the eduGAIN interfederation service." <edugain-discuss.geant.net>
  • Spamdiagnosticmetadata: NSPM
  • Spamdiagnosticoutput: 1:23
Hi Ioannis,

This looks great, and I think it's a very useful resource. It sounds like
there may need to be some "MUSTS" as part of a revised MDRPS template that
include things like (these are just my thoughts/guesses):

1) Organizational validation practices for RA activities such as onboarding
new members of each federation
2) Possibly performing domain validation activities on domains in scopes,
entityIDs and endpoints in metadata

Is that true? It seems that some prospective members of eduGAIN may need to
more fully document their practices around these activities to prevent things
like duplicate scopes or invalid scope assertion, for example.

Thanks,

Nick




On 10/20/15, 2:15 AM, "Ioannis Kakavas" <ikakavas AT noc.grnet.gr> wrote:

>-----BEGIN PGP SIGNED MESSAGE-----
>Hash: SHA256
>
>Hello all,
>
>As part of the efforts if the Enabling Users task of GÉANT4 we have
>worked on enriching the information available in the eduGAIN wiki with
>regards to the process for an identity federation joining eduGAIN.
>
>We have now created a step-by-step guide that contains details
>(according to best current practices) on the steps needed for joining
>eduGAIN. Think of it as a complementary and more detailed version of
>the eduGAIN joining checklist
>(https://technical.edugain.org/joining_checklist.php).
>
>You can find the wiki page at
>https://wiki.edugain.org/Best_Current_Practices_Guide_for_Joining_eduGAI
>N_as_a_Federation
>
>Best Regards,
>Ioannis Kakavas
>- --
>- -----------------------------------------------------------
>Ioannis Kakavas - ikakavas AT grnet.gr
>Identity and Access Management Engineer
>GRNET Network Operations Centre
>Greek Research & Technology Network - http://www.grnet.gr
>56, Mesogion Av., Ampelokipi, 11527 Athens, Greece
>Office: +30 2107474255
>- ------------------------------------------------------------
>-----BEGIN PGP SIGNATURE-----
>Version: GnuPG v2
>
>iQIcBAEBCAAGBQJWJfg9AAoJENcPDNWd48JiPLYP/j1ZNWkGqG08zX8iNkSCiNKn
>2zLeBkHjK8xqRof32AlpNN9joyB+4Ewx9zrqQFG0vmxAupZU/hXUOlr1hLatJOsp
>Iwc20BpEJc/BOc1iR062JC1Ln6zc1YUIKUvLnO0RdfgsNfjOW2CfOi+MZ/MZ5kDL
>Bln4BAhfGXOjSF/e4XeFk9UvqMq39qTEc2edlZ+sFMgzic3E+/JkWiE5LtHHhzRL
>0fiE+V0txNb60q7UkKjVBW51W3C5BLKl0aHaASKXv543ZoNxwOzFL+qXciDXyBqJ
>vo3Gl2oECpkQ90w4m3GKz9AYDaAI2AjdaA8ho8O3yrq5kTbzelLLnCwSARVOlqMA
>P+zOdNU5L3eIX+FEn+GkmEGxwObp6pVpxINjd0na68/r5ptZSQdD4cQV84pe9S2o
>yaLbb0RoxQkfw+aWvb6rRKUXa0xDw4G7iVCyVlx7EzX/rKX6QT/pJ3jpXEFdv/yR
>Og7Iiw3P4dsGtNJ4jWB73greRuIPIHdpfotklS79AHFuSSPwlBIBqOQ06YYuoo4r
>5qwOGEzf9DC0U4AMHR9YFpcBglsJSREsp9WT5iDjW4qrxOGKVCkvNAYdr55s1j3X
>tSnBseyWaVT4nVG+4eeYw82bMEwm6dTe9fI3ZxaKqrmn9Zf4ikwJGgkb0BjVcwlr
>T4Pm4FWPWG5JBf/g8YKc
>=oKmR
>-----END PGP SIGNATURE-----
>

Archive powered by MHonArc 2.6.19.

Top of Page