Project: Centralized Authentication System Implementation
4/26/2013 - Testing is in progress in the Qual environment. Testing in the Prod environment will begin shortly. The UTLogin web page has been updated with relevant information for the new service. Additional documentation for early adopters is under development.
Many systems at the university participate in a consistent sign-on environment which allows a user to authenticate with his/her UT EID and password in order to access a variety of UT applications. The current centralized authentication system, however, has some challenges in keeping up with customer demands, including higher expectations for uptime, extended session management, increasing security and logging requirements, and extensibility options such as second factor and third party authentication. Following the recommendations of the Centralized Authentication System Assessment (CASA) effort, the Centralized Authentication System Implementation (CASI) project will develop and release a new EID-based authentication system to meet current and future university needs.
The CASI project has three primary goals:
- Creation of the new authentication system and transition of at least two early adopter client services to use the new system.
- Transition of Fat Cookie services and modification of mod_auth_eid.
- Transition of UT Direct services and retirement of the existing Central Web Authentication (CWA) system and Fat Cookie.
The project includes the following major deliverables:
- Implementation of the new authentication system
- Creation of customer support package, including service policies, installer, and technical documentation, for early adopter client platforms
- Transition of at least two early adopter client services
- Creation and dissemination of transition plans for Fat Cookie and mod_auth_eid client services
- Modification of mod_auth_eid to remove authentication functionality
- Transition of all Fat Cookie services and of all mod_auth_eid-authenticated services to the new authentication system and new version of mod_auth_eid, with full client support
- Creation and dissemination of transition plans for UT Direct client services
- Implementation of a webtoken replacement
- Transition of all UT Direct client services to the new authentication system, with full client support
- Retirement of the Central Web Authentication system, including the Fat Cookie