Center for Information Technology Services

Home > CITS > Communications > Archives > Priorities > April 2003 > Authentication

UMB Directory/Authentication Strategy
April 2003

Goal:
To have a robust, secure campus Directory/Authentication environment that provides seamless, intuitive connectivity to contemporary systems and that protect against security breaches while supporting appropriate access to data for UMB research, teaching, and administrative operations.

Objectives:

  • To implement and maintain a LDAP solution for Identity Management, Authentication, Authorization and integration for all central systems.
  • To provide a compatible interface to connect the USM, UMMS and UPI applications.
  • To develop an awareness, to educate and to promote the need for standards concerning Authentication, Authorization to current and future systems.

Current State:
UMB currently has many central applications and servers with separate and distinct userids and passwords. Authorizations to these systems are difficult to obtain and the access removal process is very manual in nature. Most users have several different userids and passwords which drastically increases our TCO.

Schedule:

  • Jan./Feb. 2003:
    Develop Directory Services vendor evaluation chart.
  • Feb. 2003:
    Scheduled meeting with IT Leaders and Jack Suess, CIO UMBC to discuss directory services.
  • Feb./ March 2003:
    Select directory vendor.
  • Feb./ March 2003:
    Develop Scope document
  • March/April 2003:
    Developed Draft Implementation Plan (Phased approach)
  • April/May 2003:
    Develop an inventory of all campus applications.
  • May/June 2003:
    Facilitate meetings with IT Leaders to discuss roles.
  • May/June 2003:
    Facilitate meetings with IT Leaders to discuss NetID.
  • May-July 2003:
    Work with HR and Academic Affairs to develop rules and processes for adding and removing computer accounts for faculty/staff and students.
  • June-July 2003:
    Research PeopleSoft portal technology.

Outcome:
UMB will design and build a directory service that provides Identity Management, Authentication, Authorization and integration of multiple systems. This system will allow for the creation of a campus portal. This system will allow for the timely management of identities and access control to our applications more quickly and effectively. Using authoritative applications to provide access to our many systems will allow the university to provide more accurate solutions for protecting data, while at the same time, ensuring data access for those who need it. UMB faculty, students and staff can rest assured that their data and systems are protected and that only the users who are authorized to have access do.