21-25 May 2012
New York City, NY, USA
US/Eastern timezone

Shibboleth Federation in BNL

May 24, 2012, 1:30 PM
4h 45m
Rosenthal Pavilion (10th floor) (Kimmel Center)

Rosenthal Pavilion (10th floor)

Kimmel Center

Poster Collaborative tools (track 6) Poster Session


Mizuki Karasawa (BNL)


In BNL, we are planning to establish a federation with different organizations by using a SSO technology - Shibboleth. It provides the underlying mechanism for leveraging institutional authentication and exchanging of user attributes for authorization. This framework will allow us to collaborate not only with organizations inside of BNL but institutions/organizations outside of BNL to be able to access RACF resources (and vice versa) with ease of user account management, reduce the need for per-service account provisioning. Meanwhile reduce the opportunities for account to be compromised from security's point of view and provides users convenience to access any number of resources while singing on only once. We currently replaced our existing SSO with Shibboleth successfully in RACF, we also collaborated with Scifed and CERN and tested the framework. We foresee the federation will happen in a real world in near future.

Primary author


John Steven De Stefano Jr (Brookhaven National Laboratory (US))

Presentation materials

There are no materials yet.