Subtitled "Why carry two cards into the Library, when you already have one?", this presentation outlines the concepts and terminology of Federated Access Management, and how it works, with a preamble using the analogy of (and differences between) bank ATM cards and library membership cards. Prepared for and presented at SCONUL Access Conference, at Leeds University, on 11-Jun-2007
1. Federated Access Management Why carry two cards into the Library, when you already have one? John Paschoud InfoSystems Engineer, LSE Library London School of Economics & Political Science, UK [email_address] Copyright John Paschoud 2007. This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial, educational purposes, provided that this copyright statement appears on the reproduced materials and notice is given that the copying is by permission of the author. To disseminate otherwise or to republish requires written permission from the author. The intellectual property of others in all contributed and referenced material is acknowledged.
16. Access via a library portal to external resources The expanded list shows a link direct to the Service Provider, in this case Elsevier
17. Access via a library portal to external resources After clicking link in library portal:
18.
19. How does FAM (using Shibboleth) work? Resource WAYF Identity Provider Service Provider Web Site 1 ACS I don’t know you. Not even which home org you are from. I redirect your request to the WAYF 3 2 Please tell me where are you from? HS 5 6 I don’t know you. Please authenticate Using WEBLOGIN 7 User DB Credentials OK, I know you now. I redirect your request to the target, together with a handle 4 OK, I redirect your request now to the Handle Service of your home org. AR Handle Handle 8 I don’t know the attributes of this user. Let’s ask the Attribute Authority Handle 9 AA Let’s pass over the attributes the user has allowed me to release Attributes 10 Resource Manager Attributes OK, based on the attributes, I grant access to the resource
![Federated Access Management Why carry two cards into the Library, when you already have one? John Paschoud InfoSystems Engineer, LSE Library London School of Economics & Political Science, UK [email_address] Copyright John Paschoud 2007. This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial, educational purposes, provided that this copyright statement appears on the reproduced materials and notice is given that the copying is by permission of the author. To disseminate otherwise or to republish requires written permission from the author. The intellectual property of others in all contributed and referenced material is acknowledged.](https://image.slidesharecdn.com/federated-access-management-1199791986195315-2/85/Federated-Access-Management-Sconul-Access-Conference-1-320.jpg)
![Wouldn't it be nice if ... ,[object Object],[object Object],[object Object],[object Object],[object Object]](data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7)