Action Items from Past Meetings
(AI) TAC should review the IdP strategy document (https://spaces.at.internet2.edu/x/FgrkAg)
(AI) TAC should review the information for IdPs on the wiki and consider useful additions and revisions.
(AI) Ann or Kevin talk with Klaas Weirenga from GÉANT about a presentation to TAC meeting concerning their T&I roadmap for, say, the next 3 years? <= Deferred to August
Attending: Mark Scheible, Keith Wessel, Tom Mitchell, Janemarie Duh, Walter Hoehn, Eric Goodman, Mike Grady, Kim Milford, Albert Wu
With: Dean Woodbeck, David Walker, Nick Roy, Dave Shafer, IJ Kim, Kevin Morooney, Steve Olshansky, Ann West, Steve Zoppi
Introduction of Dave Shafer, new Trust and Identity DevOps manager
Ops Update (Nick)
- On August 2, a delegated admin reported a security flaw in the FM delegated admin login. IJ did a quick patch of the database that morning and a fix was in place in a couple of hours. A delegated admin submission has to be approved by both the site admin and InCommon RA, so we are comfortable that there was no breach .
- A new server is located in the L.A. data center, which will go into production on Monday, Aug. 7. We will do a forced failover of InCommon metadata on Tuesday, Aug. 8, for 24 hours. Nick will communicate that to site admins .
- Release 2.1 of the Federation Manager is scheduled for Tuesday, August 8. This . consists of style changes and improved accessibility.
Trust and Identity Update
- Nick mentioned the Federation Manager update
- There is a TIER Campus Success Program call/webinar today regarding the call for proposals and providing an opportunity for Q/A
Working Group Updates
- Attributes for Collaboration and Federation Working Group still needs to launch. InCommon Steering members were asked to recommend potential members
- TAC/Steering need to engage with AACRAO to recruit two registrars
- Streamlining SP Onboarding Working Group now has 11 non-Internet2 members on the email list. Janemarie reported there are a couple of candidates for co-chairs.
- Deployment Profile Working Group has a new meeting time - Keith reports there are now a couple of international participants. They are making good progress.
- OIDC/OAuth Deployment Working Group - No progress to date
There was also discussion about the appointment of the working group co-chairs. The TAC sponsor of the WG is responsible for that.
REFEDS Software Requirements for Discovery
REFEDS is forming this working group - so far there has not been any response to the charter review.
Trust and Identity direction/focus for new IdP operators
There was discussion about where TAC should focus efforts in this area. There are a number of resources available and groups working on different aspects of this issue (such as the TIER packaging group). Cirrus is preparing to roll out a service that may be helpful in this area. In addition, there are past working groups (such as the Alternative IdP WG) that have provided recommendations. There are a number of wiki pages that might help, but they are either not well organized or not easily findable.
Ann reported that the biggest gap InCommon is seeing is with service providers and VOs and understanding those needs.
This discussion will continue on a future call.