The new (and improved!) CERN Single-Sign-On

The new CERN Single-Sign-On (SSO), built around an open source stack, has been in production for over a year and many CERN users are already familiar with its approach to authentication, either as a developer or as an end user. What is visible upon logging in, however, is only the tip of the iceberg...

Descripción completa

Detalles Bibliográficos
Autores principales: Ahmad, Adeel, Corman, Asier Aguado, Fava, Maria, Georgiou, Maria V, Rische, Julien, Schuszter, Ioan Cristian, Short, Hannah, Tedesco, Paolo
Lenguaje:eng
Publicado: 2021
Materias:
Computing and Computers
Acceso en línea:https://dx.doi.org/10.1051/epjconf/202125102015
http://cds.cern.ch/record/2782836
Descripción
Sumario:The new CERN Single-Sign-On (SSO), built around an open source stack, has been in production for over a year and many CERN users are already familiar with its approach to authentication, either as a developer or as an end user. What is visible upon logging in, however, is only the tip of the iceberg. Behind the scenes there has been a significant amount of work taking place to migrate accounts management and to decouple Kerberos authentication from legacy Microsoft components. Along the way the team has been engaging with the community through multiple fora, to make sure that a solution is provided that not only replaces functionality but also improves the user experience for all CERN members. This paper will summarise key evolutions and clarify what is to come in the future.

Ejemplares similares