Microsoft has published a new Azure AD document outlining the challenges, baseline design and solutions for multilateral federation that highlights the Cirrus Identity SAML Bridge as the first solution. Multilateral federation facilitates collaboration across multiple organizations around the world and it is a critical component to Identity and Access Management architecture in higher education and research. When an institution joins an eduGAIN national federation, they gain access to over 5,000 applications. Azure AD does not support multilateral federation, but there are solutions available to fill the gap.
Situation
Many service providers (SPs) rely on externalized, attribute based access control (ABAC) to manage what end users can do. In research and academia, it is very common for an individual to have multiple relationships with an institution at the same time – any combination of student, employee, and alumni. A common way to reflect this for access control is to use the eduPerson ( https://refeds.org/eduperson) attribute called eduPersonScopedAffiliation.
InCommon and Azure AD - The Multilateral Federation Challenge
Multilateral federation facilitates collaboration across multiple organizations around the world. InCommon, CAF, UK Federation and all eduGAIN federations utilize multilateral federation. It is a critical component to Identity and Access Management architecture in higher education and research. Azure AD does not support multilateral federation natively, but there are solutions available to fill the gap.
Topics: Higher Education, Federated Identity Management, Identity and Access Management, Azure AD
Federaciones multilaterales y Azure AD - El reto
Las Federaciones multilaterales facilitan la colaboración en varias organizaciones de todo el mundo. Es un componente fundamental para la arquitectura de gestión de identidades y acceso en la educación superior y en investigación. Azure AD no es compatible con la federación multilateral de forma nativa, pero hay soluciones disponibles para llenar el vacío.
Join us for a webinar to learn how Cirrus Identity's Azure AD SAML Bridge can help you meet the new NIH authentication requirements quickly.
Topics: Microsoft Azure AD, InCommon
Cirrus Identity Bridge is Now Available in the Microsoft Azure AD App Gallery - Streamlining multilateral federation and CAS integrations for higher education institutions!
We at the Cirrus Identity team are proud to announce that Amazon Login integration is now available for Cirrus Identity Gateway customers.
Topics: Social Identity, Identity Gateway