Project: Centralized Authentication System Implementation
9/25/2013 - The UTLogin team continues to fulfill and support incoming UTLogin request applications and installations. The team is now in the final stages of testing for the UTLogin 2014.1.0 release and expanding UTLogin to Transition Group 3. As more clients are brought on, the team also continues to gather input on help documentation that is being published and updated on the ITS UTLogin site.
Many systems at the university participate in a consistent sign-on environment which allows a user to authenticate with his/her UT EID and password in order to access a variety of UT applications. The current centralized authentication system, however, has some challenges in keeping up with customer demands, including higher expectations for uptime, extended session management, increasing security and logging requirements, and demand for extensible options such as second factor and third party authentication. Following the recommendations of the Centralized Authentication System Assessment (CASA) effort, the Centralized Authentication System Implementation (CASI) project will develop and release a new EID-based authentication system to meet current and future university needs.
The CASI project has three primary goals:
- Creation of the new authentication system and transition of at least two early adopter client services to use the new system.
- Transition of Fat Cookie services and replacement of mod_auth_eid.
- Transition of UT Direct services and retirement of the existing Central Web Authentication (CWA) system and Fat Cookie.
The project includes the following major deliverables:
- Implementation of the new authentication system
- Creation of customer support package, including service policies, installer, and technical documentation, for early adopter client platforms
- Transition of at least two early adopter client services
- Creation and dissemination of transition plans for Fat Cookie and mod_auth_eid client services
- Transition of all Fat Cookie services and of all mod_auth_eid-authenticated services to the new authentication system, with full client support
- Creation and dissemination of transition plans for UT Direct client services
- Implementation of a webtoken replacement
- Transition of all UT Direct client services to the new authentication system, with full client support
- Retirement of the Central Web Authentication system, including the Fat Cookie