Project: Centralized Authentication System Implementation
CASI Project
5/1/2012 - Development of functionality in the Prototype environment is largely complete and testing is underway. The Prototype phase is scheduled for completion at the end of June.
Many systems at the university participate in a consistent sign-on environment which allows a user to authenticate with his/her UT EID and password in order to access a variety of UT applications. The current centralized authentication system, however, has some challenges in keeping up with customer demands, including higher expectations for uptime, extended session management, increasing security and logging requirements, and extensibility options such as second factor and third party authentication. Following the recommendations of the Centralized Authentication System Assessment (CASA) effort, the Centralized Authentication System Implementation (CASI) project will develop and release a new EID-based authentication system to meet current and future university needs.
Project Workstreams
The CASI project will be comprised of three separate but overlapping workstreams:
- Creation of the new authentication system and transition of at least two early adopter client services to use the new system.
- Transition of Fat Cookie services and modification of mod_auth_eid.
- Transition of UT Direct services and retirement of the existing Central Web Authentication (CWA) system and Fat Cookie.
Scope
The project includes the following major deliverables:
Workstream 1
- Implementation of the new authentication system
- Creation of customer support package, including service policies, installer, and technical documentation, for early adopter client platforms
- Transition of at least two early adopter client services
Workstream 2
- Creation and dissemination of transition plans for Fat Cookie and mod_auth_eid client services
- Modification of mod_auth_eid to remove authentication functionality
- Transition of all Fat Cookie services and of all mod_auth_eid-authenticated services to the new authentication system and new version of mod_auth_eid, with full client support
Workstream 3
- Creation and dissemination of transition plans for UT Direct client services
- Implementation of a webtoken replacement
- Transition of all UT Direct client services to the new authentication system, with full client support
- Retirement of the Central Web Authentication system, including the Fat Cookie
