COmanage NewsThis newsletter section is designed to provide additional transparency on the day-to-day workings of COmanage. Have ideas about other information that we should be including? Let us know on the #incommon-comanage slack channel or by emailing Laura! COmanage AT TECHNOLOGY EXCHANGE IN DECEMBER!We are so excited that we will be presenting at Internet2’s Technology EXchange this December 5-9 in Denver, CO, USA: Hands-on Introduction to COmanage MatchIn this tutorial, you will learn how to set up matching rules, how to use dictionaries to set up more sophisticated matches, and techniques for testing and refining your match rules. Each participant will need a device with web browser capability. Tutorial limit: 20 participants. Bridging the Divide: Dynamic MFA Using PrivacyIDEA, SATOSA, and COmanageA growing number of Service Providers (SPs) require their users to sign in using Multi-factor Authentication (MFA) to ensure that SP-provided resources are securely accessed. However, federated Identity Providers (IdPs) are still evolving in their support for MFA. A flexible bridge solution is needed. To address this challenge, the NIAID Discovery and Collaboration Platform (NDCP) developed a Dynamic MFA solution that uses campus MFA assertions when available and NDCP MFA when not. This solution combines three powerful tools: 1) PrivacyIDEA for token management and runtime authentication, 2) COmanage for NDCP MFA registration when IdPs don't provide MFA, and 3) SATOSA for SAML assertion and flow management. MFA-secured authentication from IdPs can be used directly even if the IdP does not signal it, and can automatically adjust when an IdP starts signaling MFA. Join us to learn why Dynamic MFA is essential for Virtual Organizations looking to leverage federated MFA, and how to make it work. Presenters will cover implementation and code release, the MFA deployment process, and challenges/lessons learned along the way. |