Re: Process for handling web-based account management

[Mark Poepping <poepping () CMU EDU>]

Is anybody sharing the specific code for integrating with the various cloud-based API’s (and where)?  Seems that could 
be relatively generic if we’re sharing the same data model (or most of it at least) via a set of common tech (aka 
Grouper).
Thanks.
Mark.

From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Bill 
Thompson
Sent: Wednesday, July 05, 2017 12:34 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Process for handling web-based account management

We’ve been having some success with using Grouper to control both remote account and authorization/group management. 
Insitutional cohorts and account/authorization policy are defined and managed in Grouper. Remote (i.e. Cloud systems) 
are kept in sync via a messaging system based on RabbitMQ. The overall strategy is described in more detail in the TIER 
Grouper Deployment Guide https://spaces.internet2.edu/display/TI/TI.25.1.

Best,
Bill Thompson
Director Digital Infrastructure
Lafayette College


On Jun 29, 2017, at 4:45 PM, Rob Milman <rob.milman () SAIT CA<mailto:rob.milman () SAIT CA>> wrote:

Hi everyone,

With the ever-increasing move of campus services to web-based applications (aka The Cloud), we are finding it harder 
and harder to maintain control over account management. Does anyone have a process that is working to manage these 
accounts for their institution and would be willing to share?

Thanks,

Rob

<image001.gif>

Rob Milman
Security & Compliance Analyst
Information Systems

Southern Alberta Institute of Technology
EH Crandell Building, GA 214
1301 – 16 Avenue NW, Calgary AB, T2M 0L4

(Office) 403.774.5401  (Cell) 403.606.3173
rob.milman () sait ca<mailto:rob.milman () sait ca>