Welcome to the Signet Privilege Management System Wiki
The Signet project is no longer actively supported by the Internet2 Middleware Initiative. See the Signet project status page for more information. Project mailing lists and code repository continue to be available.
Open viewing. Editing restricted to the Signet Developers.
Open viewing. Editing restricted to Signet Working Group members.
Signet Product & Documentation
For editing access within the Signet space, you will need to first obtain a registered username/password:
- Please sign up with your email as your username, and
- Notify Steve Olshansky <steveo AT internet2 DOT edu> of your request; Steve will then enable your access to these pages.
Core middleware services such as identity management, directory, and authentication provide a foundation for secure, manageable applications throughout an institution. Even with this foundation, as systems and applications proliferate it becomes more and more difficult to manage user access consistently and cost-effectively. A privilege management service is a relatively new component of campus middleware that addresses this problem by providing centralized management of user privileges across a range of applications.
The benefits of this service include:
- a standard user interface for privilege administrators
- consistent, simplified policy definition, via roles and integration with core campus organizational data
- improved visibility, understandability, and auditability of privilege information
- standard interfaces to other infrastructure services and to application systems to support integration
The maintenance release of Signet v1.2.2 offers the following fixes & changes:
- Ability to specify the default Privilege type selection in the UI. See comments in /signet/config/signetResUi.properties for more information
- Added History record creation when editing a Proxy
- Added Subject AuthId tooltip (mouseover) to Subject Search result list in the user interface
- ... and much more!
Leading-edge development and use of privilege management systems at some campuses have both proven the feasibility of these systems and provided valuable understanding of technical and organizational prerequisites. The Signet Project intends to build on these successes to permit more institutions to take advantage of this useful service.
Working Group Flywheel: Steve Olshansky - Internet2
Related Internet2 Middleware Projects
- Grouper Groups Management Working Group
- MACE-paccman (Privilege and Access Management) Working Group
- Shibboleth Single Sign-on and Federating Software
Development of this software was supported with funding from Internet2, Stanford University, and the NSF Middleware Initiative (NSF 02-028, Grant No. OCI-0330626). Any opinions, findings, and conclusions or recommendations expressed in this material are those of the author(s) and do not necessarily reflect the views of the National Science Foundation (NSF).
Questions or comments? Contact us.