One goal of the IAM Strategic Roadmap is to deploy a consolidated authentication service that adopts standards-based web single sign-on and is cloud resilient. The University benefits from have a consolidated standardized authentication service to reduces support and integration overhead. Currently, there are several authentication services which cause disparate user experiences and mixed support needs. Lastly, the main authentication service, UTLogin, is at end of life requiring replacement.
The IAM team will transition all authentication customers to Enterprise Authentication. To prepare for this transition, a new instance of the Shibboleth Identity Provider (IdP) will established in order to provide the latest benefits of the software to the university. Active Directory will serve as the directory backend. The transition will first focus on UTLogin v1 customers and, later, legacy Shibboleth customers. At the conclusion of the transition, the UTLogin and legacy Shibboleth services will be retired.
The primary success criteria for Enterprise Authentication will be:
Goal 1: Deploy UTLogin v2 – Ensure customers who have complex UTLogin v1 deployments have a fully vendor supported environment.
Goal 2: Establish the Enterprise Authentication Service – Ensure the new instance of the Shibboleth Identity Provider (IdP) is architected and deployed to meet customer and disaster recovery requirements with Active Directory as the directory backend.
Goal 3: Transition customers to Enterprise Authentication – Complete the transition of all authentication customers to Enterprise Authentication.
The Enterprise Authentication is expected to be available in September 2019. Transition of UTLogin customers to Enterprise Authentication will begin in September 2019 and last until December 2020. Please check the Transition section for more details and information as they become available.