In the educational and research sectors, the technical infrastructure of these identity federations are is based on technical infrastructure commonly known as Shibboleththe SAML standard, and commonly the Shibboleth implementation of this standard. Components of this technology include:
- Identity providers which allow an institution's institution’s users to be identified.
- Service providers which grant federation users access to online resources such as databases, applications, grids, library repositories and collaboration environments.
A core driver of federated identity and access management (IAM) in a NZ context is the fact that cross-institutional collaboration is a growing feature of the research sector. Therefore the vision behind the establishment of a New Zealand Access Federation is to allow member organisations' organisations’ scientists, students and staff to easily participate within national, Australasian and international activities in a seamless and secure manner.
Tuakiri has been developed to allow authentication , and passing user attributes to cross across organisational boundaries. This greatly simplifies access for the user and provides an infrastructure that promotes better security of access to the resources.
- Users will have a single account for all their services.
- Authentication will only be done at the user's user’s home organisation.
- User data will be maintained in only one place.
- The custodian of the data will have better management and control of the data.
- Collaboration between multiple organisations will be simplified.
If you require or would like assistance with implementing an Identity Provider or Service Provider, then please contact us at firstname.lastname@example.org.
We also have resources that you can access to help progress your own IAM initiatives.