Open Office Hours - September 2

Do you have a question about deploying or configuring Registry or Match? Want to get some input on a solution architecture design? Want to hear how your colleagues in the community are solving problems similar to yours? Each month you can bring your topics for discussion to the call. No need to register or spin up a presentation (but feel free if it suits you!); just show up! A short conversation starter kicks off each session to help get the discussion started.

Friday, September 2 at 12:00 PM (America/New York) (no registration necessary)

https://us06web.zoom.us/j/84743471575?pwd=d29QNFM1KzEwUFZvRFg0enJ1dlNmQT09 

IN YOUR TIMEZONE & link for your calendar

September's Topic Aperitif: End of Summer Fun

In many countries, the end of summer is near. In the United States, Labor Day Weekend (which starts the Saturday after Open Office Hours) is the unofficial last weekend of Summer. Given the US holiday, we thought that participation may be light this month. Rather than fielding the “will this be recorded” questions from those who will be taking some time off, our “topic aperitif” this month is a small homage to summer with a very short Ice Cream Trivia quiz game. Who will play it cool and who will become legend-dairy?  As always, we will follow this 15 min intro with topics of your choosing. Bring your questions, comments, and suggestions about any COmanage topic to office hours with the project team.

COmanage Container Planning

If you use containerized versions of COmanage Registry (or Match), you might be wondering what guiding principles the COmanage project uses for developing and maintaining containers, and what the vision is for evolving and supporting containerized packaging. For the answers, we point you to the COmanage Container Roadmap that describes the guiding rationale and plan for building COmanage containers.

COmanage News

This newsletter section is designed to provide additional transparency on the day-to-day workings of COmanage. Have ideas about other information that we should be including? Let us know on the #incommon-comanage slack channel or by emailing Laura!

UPCOMING OPEN OFFICE HOURS

The final three Open Office Hours for 2022 (and their Topic Aperitifs) will be on a different schedule. Approximate timing is listed below; links for your calendar will be provided in next month's newsletter:

• OCT: week of 3 Oct (TBD) - Topic: Community Sharing TBA
• NOV: Thu, 27 Oct (NEW DAY!) - Topic: Open topics with the latest training cohort
• DEC: Open Office Hours LIVE! at Technology Exchange. (we’ll use zoom for those participating remotely) Date & time to come once assigned.

COmanage AT TECHNOLOGY EXCHANGE IN DECEMBER!

We are so excited that we will be presenting at Internet2’s Technology EXchange this December 5-9 in Denver, CO, USA:

Hands-on Introduction to COmanage Match

In this tutorial, you will learn how to set up matching rules, how to use dictionaries to set up more sophisticated matches, and techniques for testing and refining your match rules. Each participant will need a device with web browser capability. Tutorial limit: 20 participants.

Bridging the Divide: Dynamic MFA Using PrivacyIDEA, SATOSA, and COmanage

A growing number of Service Providers (SPs) require their users to sign in using Multi-factor Authentication (MFA) to ensure that SP-provided resources are securely accessed. However, federated Identity Providers (IdPs) are still evolving in their support for MFA. A flexible bridge solution is needed.

To address this challenge, the NIAID Discovery and Collaboration Platform (NDCP) developed a Dynamic MFA solution that uses campus MFA assertions when available and NDCP MFA when not. This solution combines three powerful tools: 1) PrivacyIDEA for token management and runtime authentication, 2) COmanage for NDCP MFA registration when IdPs don't provide MFA, and 3) SATOSA for SAML assertion and flow management. MFA-secured authentication from IdPs can be used directly even if the IdP does not signal it, and can automatically adjust when an IdP starts signaling MFA.

Join us to learn why Dynamic MFA is essential for Virtual Organizations looking to leverage federated MFA, and how to make it work. Presenters will cover implementation and code release, the MFA deployment process, and challenges/lessons learned along the way.

That’s it for this month’s newsletter; keep an eye out for our next one scheduled for late September. We hope to see you at our Open Office Hours on September 2nd!