You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 15 Next »


eduGAIN Steering Group Meeting

Tuesday 25th September 2018, 17:00 - 18:30 CEST (in your timezone)

Please Note that the above time is CONFIRMED.

14:45 UTC
16:45 CEST

Arrival & "Can you hear me now?" (see Connection Details)

15:00 UTC
17:00 CEST

Welcome, Introductions & Agenda Agreement

15:15 UTC
17:15 CEST

Membership Updates and Joining
15:30 UTC
17:30 CEST

eduGAIN Support and Mentoring

15:45 UTC
17:45 CEST

eduGAIN within GN4-3

  • Quick Update on GN4-3 Structure and Progress.
16:00 UTC
18:00 CEST

Future SG Meetings

  • Conflict/Changes to 2018 meeting dates/times?
  • Next meeting @ TBC (likely 13:30-15:00 on Tuesday 13th November 2018 via VC)
16:15 UTC
18:15 CEST

Any other business, Summary and Actions.

16:30 UTC
18:30 CEST

Meeting Close (or we are running over time).

Connection Details

Attendance

Federations in Attendance (18)

  1. UK Federation
  2. TAAT
  3. SGAF
  4. COFRe
  5. SAFIRE
  6. SiFULAN
  7. SWAMID
  8. InCommon
  9. SIR
  10. AAI@EduHr
  11. INFED
  12. CAFé
  13. LEAF
  14. CAF
  15. IDEM
  16. SWITCH
  17. GRNET
  18. GakuNin

Attendees (24)

  1. Brook Schofield, GÉANT
  2. Nicole Harris, GÉANT
  3. Rhys Smith, UK Federation
  4. Sten Aus, TAAT
  5. Simon Green, SGAF
  6. Casper Dreef, GÉANT
  7. Alejandro Lara, COFRe
  8. Donald Coetzee, SAFIRE
  9. Guy Halse, SAFIRE
  10. Muhammad Farhan Sjaugi, SIFULAN
  11. Pål Axelsson, SWAMID
  12. Nick Roy, InCommon
  13. José Manuel Macias, SIR
  14. Miroslav Milinovic, AAI@EduHr
  15. Raja V, INFED
  16. Jean Carlo Faustino, CAFé
  17. Valentin, LEAF
  18. Julie Menzies, CAF
  19. Chris Phillips, CAF
  20. Davide Vaghetti, IDEM
  21. Lukas Hämmerle, SWITCH
  22. Zenon Mousmoulas, GRNET
  23. Halil Adem, GRNET
  24. Motonori, GakuNin

Apologies (22)

  1. Jiri Borik, eduID.cz
  2. Terry Smith, AAF
  3. Wolfgang Pempe, DFN
  4. Arnout Terpstra, SURFnet
  5. Pascal Panneels, Belnet-AAI
  6. Vasko Sazdovski, AAIEduMk (also leaving the federation team)
  7. Mikkel Hald, WAYF
  8. Maarten Kremers, SURFconext
  9. Joost van Dijk, SURFconext
  10. Jaime Perez Crespo, FEIDE
  11. Ann Harding, SWITCH
  12. Andria Dionysiou, CIF
  13. Carlos Guzman,
  14. Ann West, InCommon
  15. Timo Mustonen
  16. Zivan Yoash, IIF
  17. Rui Ribeiro, CAFé
  18. Mads Freek Petersen, WAYF
  19. Lino Khálau, xxx
  20. Glenn Wearen, Edugate
  21. Esmeralda Pires, RCTSaai
  22. Nicholas, RENU/RIF

Notes

Welcome, Introductions & Agenda Agreement

The Chair welcomed everyone to the 6th meeting of 2018.

For details on new members and candidates see https://technical.edugain.org/status and work on progressing new members is underway.



Regarding ACTION-20180806-01 which was to look at excluded voters and whether they could use Evento or not there are 11 excluded voters and they were all contacted. Eight have corrected any issues accessing Evento so that is no longer a reason why they

HAKA, Edugate, RCTSaai, ArnesAAI, COLFIRE, SIR, ARNaai, IUCC Id Fed

Oman KID, AAIEduMk, YETKIM





Outstanding Issues with Federations

eduGAIN Compliance Issues


43 federations are now compliant and 6 federations became compliant in September 2018. There is some ongoing work by InCommon to support the new profile. Nick announced that a vote at the InCommon TAC meeting this week was to only export entities with a technical contact. This will vastly increase the

Lukas asked whether the layout of the tables using the CCTLD reference rather than the federation name should be changed. This is currently used.

Nicole also covered the issue of the MRPS review and .... Some federations have historic MRPS documents and there will be an approach made to all federations to assess their MRPS and see if they'll review their federations in line with the template.

Chris Phillips asked for a reference to the MRPS template to be added as there are various iterations.



Support and Mentoring



GN4-3

What's new? What's the same?

In GN4-3 the entire Trust and Identity Work Package (formally called WP5) is being led by Licia Florio, GÉANT and Marina Adomite, AMRES. There are four (4) tasks within this work package:

  • Task 1: Over arching task that covers the 4 specific services
    • eduGAIN (Davide Vaghetti, GARR)
    • eduroam (Miroslav Milinovic, Srce)
    • eduTEAMS (Christos, GÉANT)
    • InAcademia (Justin Knight, Jisc)
  • Task 2: Incubator (lead by Niels van Dijk)
  • Task 3: Trust & Identity Operations (lead by Nicole Harris, GÉANT)
  • Task 4: Research Communities (lead by Maarten Kremers, SURFnet)


Lukas asked that since there are enough non-European attendees in the SG what is the benefit of the project to eduGAIN and Trust & Identity. Nicole explained that it is mutually beneficial to support....


Round Table

Rhys (UK Federation) - 1149 members - SAML metadata management portal - piloting with some customers and will be the basis of the MFS (Managed Federation Service) which started as a reimplementation of the UK Federation, Shibboleth MDA, Azure and container based. Expected completion in December 2018. Liberate (managed eduroam/SAML/Shibboleth/Moonshot IdP instance) that is run on AWS. This service is live. Contact Jisc/Rhys for more information. Reseller agreements are being agreed at the moment.

Sten (TAAT) - investigating issues with attribute release with various members. Adding members to the federation and marketing the value of the service and eduGAIN. Manpower constrains make juggling operations and development difficult.

Guy (SAFIRE) work on getting local publishers participating in the federation.

Chris/Julie (CAF) working on eVA (eduroam Visitor Access) cross over service that they are piloting in Canada from SURFnet. SIRTFI and R&S

Simon (SGAF)migrated infrastructure to new datacentre and uses a proxy for their ADFS users and are exploring how to avoid the double discovery.

Nick (InCommon) working on the baseline expectations programme and it will require members to have minimum usability requirements by 14 December otherwise they will be excluded from the federation. Adoption quickly rose from 25% to 50% but has leveled out. More work required to accelerate this again. Two new hires. MDQ service built on AWS Lamba to make per entity metadata available. Will be migrating people to new metadata endpoint.

José Manuel (SIR) the federation still exists which has 2 people. Migrating to SIR2 federation. Will be stopping PAPI as a protocol. MRPS will need to be updated. entityIds will be kept, but end-points will change at some moment. Will be using Jagger for metadata management and promoting entity categories and developing local categories. SIRTFI. MDQ. IdPaaS Proof of Concept being developed. Connected to Spanish eIDAS node. Was previously offering STORK.

Alejandro (COFRe) working on the issues for SAML profile compliance for eduGAIN. This requires an upgrade to pyFF.io. Also publishing RedCLARA services to eduGAIN for the wider Latin American community.

Halil + Zenon (GRNET) Halil has recently joined the Trust & Identity team. Production MDQ service. Depricating the legacy entity grouping mechanism that they provided their membership and use of entity categories. Moving to "opt-in" vs "opt-out". Metadata size is too large and people don't want to load large dataset and want a production MDQ service.

Miro (AAIEduHr) focusing on operations and team is small

Carlos Ramirez (ColFIRE) xxx

Pål (SWAMID) working extensively on multifactor. Needs to have a step further than REFEDS MFA profile with the need for identity proofing. Aiming for an end of year deployment. Working with Libraries (public Libraries - not University Libraries) for identity proofing.

Farhan (SIFULAN) identity workshop scheduled for 10 October to encourage media publishers to join the federation and promote eduGAIN.

Boro (AAIEduMk) reporting from the airport that the Macedonian AAI that they had extended to primary and secondary schools and working on enlargement to all of the universities. Statistics and measurement as a secondary project.

Davide (IDEM) working on the SAML profile compliance (only completed yesterday) and enabling publisher to work with IdPs via eduGAIN. Interoperability isn't a given and has been challenging. Putting MDQ in production by years end - and working on IdP in the Cloud service. Working with government ID as a 2nd factor.

Jean Carlo (CAFé) two big initiatives. Implementation of SIRTFI and focused on the first institution working by end of the year. Developing a roadmap for 2019 and moving the use of federated auth and updating UX/UI to improve design. BReduPerson schema update and adoption of ORCID. Working on improving the deployment of their tools and collaborating with IDEM.

Chris asked that since OpenID Connect wasn't touched on during the call and that there is a way to promote OIDC via membership of the Open ID Foundation. Davide said that the mailing list and group will be setup shortly and people should move there for focus on this. Chris stated that there is the OIDCre group within REFEDS is a useful initial group. The community and interlectual property rules are different in this space. Davide said that Open ID Foundation isn't significantly different than OASIS.

Lynda.com was going to move toward LinkedIn and Chris' request via eduGAIN Support and statistics provided by ...




...

  • ACTION-TBA: TBA

TOPIC...

...

Future meetings

The next meeting will take place on TBC (likely to be Tuesday 13th November 2018 at 13:30-15:00 CET via VC)

  • No labels