TechEx2024: Supporting Science at Scale: CILogon Hosted COmanage for ACCESS

Wednesday, December 11, 11:20am - 12:10pm (EST)

Time shown in-05:00 America, New York

In 2022, NSF funded the Advanced Cyberinfrastructure Coordination Ecosystem: Services and Support (ACCESS) collaboration to transition from XSEDE in providing cyberinfrastructure for researchers to share computing resources around HPC, HTC, Visualization, Storage, and Data Sources. This presented an immediate challenge in managing credentials for 100,000 registered users with over 30 years of history.

To meet this challenge, and to lay the groundwork for ongoing identity management processes, ACCESS partnered with CILogon to deploy a hosted COmanage Registry instance. Leveraging existing COmanage capabilities such as bulk import, duplicate detection, enrollment flows, identity linking, and credential management, this instance also leverages custom plugins to provide additional ACCESS-specific functionality. SSO across ACCESS sites (including COmanage) is provided by CILogon’s OIDC service.

While this project supports research identity management, many themes of this work apply to enterprise identity management as well. This session will discuss how COmanage Registry and CILogon services were deployed to meet ACCESS requirements for federated identity and identity management at scale, including migration of data from legacy systems, challenges around user education, how this work may influence future product development, and what future capabilities may be deployed to further support ACCESS.

Add to Calendar 2024/12/11 11:20:00 2024/12/11 12:10:00 America/New_York TechEx2024: Supporting Science at Scale: CILogon Hosted COmanage for ACCESS In 2022, NSF funded the Advanced Cyberinfrastructure Coordination Ecosystem: Services and Support (ACCESS) collaboration to transition from XSEDE in providing cyberinfrastructure for researchers to share computing resources around HPC, HTC, Visualization, Storage, and Data Sources. This presented an immediate challenge in managing credentials for 100,000 registered users with over 30 years of history.

To meet this challenge, and to lay the groundwork for ongoing identity management processes, ACCESS partnered with CILogon to deploy a hosted COmanage Registry instance. Leveraging existing COmanage capabilities such as bulk import, duplicate detection, enrollment flows, identity linking, and credential management, this instance also leverages custom plugins to provide additional ACCESS-specific functionality. SSO across ACCESS sites (including COmanage) is provided by CILogon’s OIDC service.

While this project supports research identity management, many themes of this work apply to enterprise identity management as well. This session will discuss how COmanage Registry and CILogon services were deployed to meet ACCESS requirements for federated identity and identity management at scale, including migration of data from legacy systems, challenges around user education, how this work may influence future product development, and what future capabilities may be deployed to further support ACCESS. Boston Marriott Copley Place (SALON C/D - 4th Floor), Boston, MA, NY, USA false MM/DD/YYYY 30 OPAQUE azBSYqiakzpHzWJrcmaE263137

Boston Marriott Copley Place (SALON C/D - 4th Floor), Boston, MA, NY, USA

Laura Paglione, lpaglione@sphericalcowgroup.com

Link: