UC Identity Management Conference Call - 1/12/2005 - Notes

Participants

• Mike Baptista, UCOP
• Bob Brandriff, UCOP
  
• Jacqueline Craig, UCOP
• Ashley Gould, UCOP
  
• Bruce James, UCOP
  
• Datta Mahabalagiri, UCLA
  
• David Walker, UCOP
• Jerry Wilcox, UCOP
  

UCTrust Service Description and Policies

• There was consensus on the general structure and responsibilities for UCTrust Federation Administration and Governance by the ITLC.
• We will modify the responsibilities of Identity Providers and Service Providers to indicate intra-federation support responsibilities.  In general, Identity Providers will be responsibility for problems related to identity management, authentication, correct identity assertions, password changes, etc., while Service Providers will be responsible for the correct operation of their services once they've received a (correct) identity assertion through Shibboleth.
• We will clarify the "help desk" responsibilities of Identity Providers and Service Providers to indicate that this is really a contact for problem resolution among those support organizations, not for end-users.  (End-user help desks will often be needed, but because of local requirements, not because of a UCTrust requirement.)
  
• We'll make sure that user education plans are part of new member application "packages."
• We'll add another Best Practice concerning the possibility that Service Providers (like UCFY/YBO) can give end-users the option of using UCTrust only to protect their access or having the service provide additional authentication checks.  It will generally be important that the service maintain an audit log of the user's decision.
• Jacqueline and David will distribute a revised draft to the group by the end of the week. This document will be crucial to a conference call on February 9 among Vice Chancellors, CIOs, and others to discuss UCTrust and other service delivery models that create interdependencies among IT support organizations within UC.  Please look it over carefully so that we can have a completed draft for their review by the end of our next conference call.
  

Guest Access to Wireless Networks

• At the 1/11/2005 Communications Planning Group meeting, David Walker discussed the idea of providing guest wireless network access within UCTrust.  There was agreement that this is a good idea, but that it's a hard problem (as we had discussed a number of months ago).  Jim Madden of UCSD and David Walker will discuss this further and report back to both groups.

Next Call