Funded by the European Union s H2020 Programme. D4.1 Virtual Collaboration Platform



Similar documents
D1.3 Data Management Plan

TIB 2.0 Administration Functions Overview

Licia Florio Project Development Officer Identity Federations in Europe

SAML Authentication Quick Start Guide

Title: A Client Middleware for Token-Based Unified Single Sign On to edugain

Content Management System for internal communication. Deliverable D1.2

SAML Authentication with BlackShield Cloud

DualShield SAML & SSO. Integration Guide. Copyright 2011 Deepnet Security Limited. Copyright 2011, Deepnet Security. All Rights Reserved.

HabEat - FP HabEat

SAML 2.0 SSO Deployment with Okta

D3.9 Collective Intelligence Dashboard

INTEGRATION GUIDE. DIGIPASS Authentication for Salesforce using IDENTIKEY Federation Server

Deliverable D8.1 Water Reuse Europe (WRE) website design and functionality specification

Deliverable D 6.1 Website

Tenrox. Single Sign-On (SSO) Setup Guide. January, Tenrox. All rights reserved.

Only LDAP-synchronized users can access SAML SSO-enabled web applications. Local end users and applications users cannot access them.

Deliverable D 6.1 Website

Deliverable. Grant Agreement number: Open Access Policy Alignment STrategies for European Union Research. FP7 CAPACITIES Science in Society

Authentication Integration

Getting Started with AD/LDAP SSO

NCEPTION REPORT. Short Introduction to use of MESA Training Distance Education LMS

Flexible Identity Federation

The increasing popularity of mobile devices is rapidly changing how and where we

Using Shibboleth for Single Sign- On

Perceptive Experience Single Sign-On Solutions

DELIVERABLE. D2.4.1 Cloud Application Template Catalogue Report

Integrating Apex into Federated Environment using SAML 2.0. Jon Tupman Portalsoft Solutions Ltd

Masdar Institute Single Sign-On: Standards-based Identity Federation. John Mikhael ICT Department

Welcome to Collage (Draft v0.1)

Federation At Fermilab. Al Lilianstrom National Laboratories Information Technology Summit May 2015

1. Please login to the Own Web Now Support Portal ( with your address and a password.

IMPLEMENTING SINGLE SIGN- ON USING SAML 2.0 ON JUNIPER NETWORKS MAG SERIES JUNOS PULSE GATEWAYS

Guideline on Implementing Cloud Identity and Access Management

Environment (including Climate Change) Deliverable No: D2. FIRESENSE Web Site. 28 February March 2010

Guidance notes and templates for Project Technical Review involving Independent Expert(s)

Integration Guide. SafeNet Authentication Service. Using SAS as an Identity Provider for Tableau Server

Dell One Identity Cloud Access Manager How to Configure for SSO to SAP NetWeaver using SAML 2.0

Shop by Manufacturer Custom Module for Magento

Using SAML for Single Sign-On in the SOA Software Platform

Improving Security and Productivity through Federation and Single Sign-on

INFORMATION SYSTEMS SERVICE NETWORKS AND TELECOMMUNICATIONS SECTOR. User Guide for the RightFax Fax Service. Web Utility

BONE Network of Excellence

HP Software as a Service

DocuSign Single Sign On Implementation Guide Published: March 17, 2016

How To Use Salesforce Identity Features

emobile Bulk Text User Guide Copyright Notice Copyright Phonovation Ltd

idp Connect for OutSystems applications

Configuring Parature Self-Service Portal

OpenSSO: Cross Domain Single Sign On

Application Note. Intelligent Application Gateway with SA server using AD password and OTP

INUVIKA OPEN VIRTUAL DESKTOP ENTERPRISE

Advanced Configuration Administration Guide

Strong Authentication for Microsoft SharePoint

To set up Egnyte so employees can log in using SSO, follow the steps below to configure VMware Horizon and Egnyte to work with each other.

SAML Security Option White Paper

SAP Cloud Identity Service Document Version: SAP Cloud Identity Service

Deliverable D1.1. Building data bridges between biological and medical infrastructures in Europe. Grant agreement no.:

Integration Guide. SafeNet Authentication Service. Using SAS as an Identity Provider for Salesforce

Qualification of innovative floating substructures for 10MW wind turbines and water depths greater than 50m

Getting Started with Single Sign-On

Moodle and Office 365 Step-by-Step Guide: Federation using Active Directory Federation Services

Merit Cloud Media User Guide

Configuring Single Sign-on from the VMware Identity Manager Service to WebEx

IGI Portal architecture and interaction with a CA- online

Step-by-Step guide for SSO from MS Sharepoint 2010 to SAP EP 7.0x

HP Software as a Service. Federated SSO Guide

FP7 Project reporting. FP7 INCO National Contact Points Meeting 9 June Athens Anne Mandenoff - European Commission - RTD A.

HOTPin Integration Guide: Salesforce SSO with Active Directory Federated Services

Introduction to SAML

Single Sign On (SSO) Implementation Manual. For Connect 5 & MyConnect Sites

H2020 Model Grant Agreement for Lump sum grants (H2020 MGA Lump sum Multi)

Authentication Methods

Comparison of Moodle and ATutor LMSs

Microsoft Office 365 from Vodafone. Administrator s Guide for Midsize Businesses and Enterprises

Shibboleth N-Tier Support. Chad La Joie

Vodafone Bulk Text. User Guide. Copyright Notice. Copyright Phonovation Ltd

EUROPEAN COMMISSION. CASSANDRA Common assessment and analysis of risk in global supply chains

Transcription:

Funded by the European Union s H2020 Programme D4.1 Virtual Collaboration Platform 1

PROJECT DOCUMENTATION SHEET Project Acronym Project Full Title : TANDEM : TransAfrican Network Development Grant Agreement : GA #654206 Call Identifier Topic Funding Scheme : H2020-INFRASUPP-2014-2 : INFRASUPP-7-2014 : Coordination and Support Action (CSA) Project Duration : 24 months (May 2015 - April 2017) Project Officer Coordinator Consortium partners Website : Leonardo Flores Añover, Unit C.1, DG CONNECT : European Commission : Damien Alline, Institut de Recherche pour le Développement (France) - IRD : Institut de Recherche pour le Développement (France) - IRD : Sigma Orionis (France) - SIGMA : The UbuntuNet Alliance for Research and Education Networking (Malawi) - UBUNTUNET : The West and Central African Research and Education Network (Ghana) - WACREN : GEANT Limited (UK) - GEANT Ltd : Groupement d Intêret Public pour le Réseau National de Communications pour la Technologie, l Enseignement et la Recherche (France) - RENATER : Centre de Coopération International en Recherche Agronomique pour le Développement (France) - CIRAD : Brunel University London (UK) - BRUNEL : Cooperacion LatinoAmericana de Redes Avanzadas (Uruguay) - CLARA : www.tandem-wacren.eu 2

Number : Deliverable D4.1 DELIVERABLE DOCUMENTATION SHEET Title Related WP Related Task Lead Beneficiary Author(s) Contributor(s) Reviewer(s) Nature Dissemination level Due Date Submission date Status : Virtual Collaboration Platform : WP4 (Community) : Task 4.1 (Setup of virtual collaboration platform) : CLARA : Carlos Gonzalez (CLARA) carlos.gonzalez@redclara.net : Gustavo Garcia (CLARA) gustavo.gonzalez@redclara.net : Tiwonge Msulira Banda (UBUNTUNET) (tbanda@ubuntunet.net) : R (Report) : PU (Public) : August 31, 2015 (M4) : August 31, 2015 (M4) : Final 3

QUALITY CONTROL ASSESSMENT SHEET Issue Date Comment Author V0.1 28/08/2015 First draft Carlos Gonzalez (CLARA) V0.2 DD/MM/YYYY Review first draft Tiwonge Msulira Banda (UBUNTUNET) WP Leader V0.3 DD/MM/YYYY Contribution to Sections X.X & X.X V0.4 DD/MM/YYYY Contribution to Section X.X V0.5 DD/MM/YYYY Contribution to Sections X.X & X.X V0.6 DD/MM/YYYY Second draft V0.7 DD/MM/YYYY Peer review V0.8 DD/MM/YYYY Peer review V0.9 DD/MM/YYYY Peer review V0.10 V0.11 DD/MM/YYYY Peer review DD/MM/YYYY Quality check V1.0 DD/MM/YYYY Submission to the EC Damien Alline (IRD) Coordinator 4

DISCLAIMER The opinion stated in this report reflects the opinion of the authors and not the opinion of the European Commission. All intellectual property rights are owned by the TANDEM consortium members and are protected by the applicable laws. Except where otherwise specified, all document contents are: TANDEM Project - All rights reserved. Reproduction is not authorised without prior written agreement. The commercial use of any information contained in this document may require a license from the owner of that information. All TANDEM consortium members are also committed to publish accurate and up to date information and take the greatest care to do so. However, the TANDEM consortium members cannot accept liability for any inaccuracies or omissions nor do they accept liability for any direct, indirect, special, consequential or other losses or damages of any kind arising out of the use of this information. ACKNOWLEDGEMENT This document is a deliverable of the TANDEM project, which has received funding from the European Union s Horizon 2020 Programme for Research, Technological Development and Demonstration under Grant Agreement (GA) Nb #654206. 5

Executive summary This document is a deliverable of the TANDEM project, which is funded by the European Union s Horizon 2020 Programme under Grant Agreement #654206. The document describes the architecture of the Colaboratorio and how it is integrated with the NRENs as a service provider. Colaboratorio is RedCLARA s initiative of a global service that allows the end-user to create, and manage user communities. The result is a social network for work. A WACREN instance of Colaboratorio has been implemented and is accessible at http://community.wacren.net. The platform has integrated the Nigerian NREN Catch-all Identity Provider as a first step. Soon the WACREN Federation, eduid will be integrated. The WACREN Colaboratorio has been implemented with several services, including a community management, large file transfer, wiki and web conferencing Further work will eventually migrate the WACREN Colaboratorio to WACREN servers. In the immediate and short term, the service is going to be enhanced and translated to French. 6

TABLE OF CONTENTS Table of Contents...7 Glossary of Terms / List of Acronyms...8 Introduction...9 1- Virtual Collaboration Platform for WACREN... 10 2- Technical Architecture and Specifications... 10 3- Services... 13 3.1 Communities... 13 3.2 Wiki... 13 3.3 FileSender... 13 3.4 Web conference... 13 4- Further Work... 14 5. References... 14 7

GLOSSARY OF TERMS / LIST OF ACRONYMS ACRONYM ICT IdF IdP SAML SAML 2.0 SP Catchall IdP DEFINITION Information and Communication Technologies Identity Federation [Identity Provider] Is a system that allows an end user to authenticate, i.e. Identify itself using, usually, an username and password. Security Assertion Markup Language [SAML 2 SAML] Is an XMLbased protocol that uses security tokens containing assertions to pass information about a principal (usually an end user) between a SAML authority, that is, an identity provider, and a SAML consumer, that is, a service provider. [R1] [Service Provider] Is a system that an end user can use after authenticate using an authorized Identity Provider. And IdP that allows the registration of users whose institution doesn t have an IdP or whose IdP is not yet authorized by the SP. 8

INTRODUCTION This document, is a deliverable of the TANDEM project, which is funded by the European Union s Horizon 2020 Programme under Grant Agreement #654206. TANDEM aims at supporting dialogue between the EU and African Research and Education Networks, with special attention to Western and Central Africa, which at e-infrastructure level is coordinated by the Western and Central African Research and Education Network (WACREN). The scope of the project is to promote cooperation by exploiting the interconnection between the European research and education network (GEANT) and the established African regional networks. Within WP4, which is concerned with reinforcing the NREN Community and to create the favourable conditions for incubating communities, Task 4.1 led by CLARA is aimed at creating a virtual collaborative platform for WACREN based on Colaboratorio, which was developed by CLARA within the framework of the EUFP7 ELCIRA Project (Grant Agreement #313180). Colaboratorio is a global service that allows Endusers to create, and manage User Communities. The result is a social network for work. This deliverable therefore provides technical specifications and an overview of the Virtual Collaboration Platform for WACREN. It also describes the architecture of Colaboratorio, and how it was integrated to the WACREN s Identity Provider (initially NgREN Catch-all IdP) so the services became federated. During the course of the project, the WACREN Federation, eduid will be integrated, bringing with it more Identity providers from the region. Initially, an instance of the Collaborative Platform has been created on the CLARA infrastructure, which will then be migrated to the WACREN infrastructure during the course of the project. D4.1 has been structured into 4 main parts: The first section is an overview of the virtual collaboration platform; the second section gives an architectural overview of the WACREN Colaboratorio including what was done to deploy the instance; the third describes the services available on the WACREN Colaboratorio; and the final section outlines the next steps that will follow in further development of the WACREN Colaboratorio to enhance it. 9

1- VIRTUAL COLLABORATION PLATFORM FOR WACREN A Virtual Collaboration Platform for WACREN has been deployed by engineers from RedCLARA and WACREN to serve the research and education community in West and Central Africa. The platform accessible at http://community.wacren.net, is based on Colaboratorio, a global service developed and maintained by RedCLARA that allows end users in the research and education community to create and manage user communities. The service allows the WACREN users to access a communities management service, a web conference system, a big file transfer tool, and wiki services; all them focused on serving the communities. Figure 1 shows a screen capture of the WACREN Colaboratorio. Figure 1: Screen capture of the WACREN Colaboratorio Instance. The WACREN instance of Colaboratorio is initially integrated with the Nigerian NREN Catch-all Identity Provider (NgREN IdP) allowing users to log in and access the services. This exercise was completed 30 th July 2015, achieving Milestone #5 according to the Description of Work. Now, WACREN has a virtual collaboration platform complete with collaborative, allowing the creation of online communities according to needs. In addition to Communities that WACREN may create, the WACREN Colaboratorio also comes with Communities created by other users from across the world. In the same way, WACREN Communities will also be visible to the rest of the world. 2- TECHNICAL ARCHITECTURE AND SPECIFICATIONS As already noted and as provided in the Description of Work, this initial deployment of Colaboratorio for WACREN is an instance of the service, with the core running on RedCLARA infrastructure, and the interface running on WACREN servers. Figure 2 shows the components in a typical integration.as shown, there are basically 3 layers demarcated by the dotted lines. In the base, which is hosted at RedCLARA, there are the Service Providers (SP) from the Colaboratorio, one for each service in the platform. The Colaboratorio service handles the user communities, while the Wiki, FileSender and Webconference are services associated within it, working integrated with the user community. 10

The middle layer is typically what is and/or would be hosted by WACREN. This includes the IdP and any other services that WACREN may want to integrate. Currently, it is the NgREN Catch-all IdP and soon the WACREN IdF. The top layer is the interface, basically a Colaboratorio iframe based on HTML and Javascript. It is integrated with Colaboratio service and the rest of the SPs. This is hosted by WACREN and is what is visible at community.wacren.net. Therefore, the service integration was done through 2 mechanisms: a) Identity federation integration (SAML2), i.e. integrating the NgREN Catch-all IdP; and b) HTML/JS/Iframe integration linking Colaboratorio Services and the WACREN container/iframe. This is shown in Figure 2 by red lines. Figure 2: Colaboratorio architectural description. In order to deploy the WACREN Container, which is in charge of embed the Colaboratorio s services, the following actions were performed: 1- The NgREN Catch-all IdP was fed, by WACREN, with the Colaboratorio Service Provider (SP) Metadata. 2- The metadata of NgREN Catch-all IdP was added, by RedCLARA, to the central point of Colaboratorio Identity Providers (IdP) and then, it was spread to SPs. 3- A base WACREN Container was developed by RedCLARA as an example and was uploaded to the RedCLARA s Control Version System. This example was configured with English as the default language, 4- The base Container was used by WACREN to create its own WACREN Container, deployed on its infrastructure and then, added to the DNS as community.wacren.net 11

A summary of the main technologies used for the implementation and where each component is hosted shown in the Table 1. Table 1: Main technical systems of each service Service Hosted by O.S. Main technologies WACREN Container WACREN Linux HTML Catch-all IdP WACREN Linux Shibboleth Communities RedCLARA Ubuntu Joomla, PHP, MySQL Wiki RedCLARA Ubuntu Mediawiki, PHP, SAMLAuth - MediaWiki, MySQL envio RedCLARA Ubuntu Filesender, Assembla Webconference RedCLARA Ubuntu mconf (Big Blue Button), PHP, MySQL Sivic (H323 Conference RedCLARA Ubuntu PHP, MySQL Booking System) Figure 3 shows screen capture of the WACREN Colaboratorio login page with the NgREN Catch-all IdP. Currently, the NgREN Catch-all IdP is the only one integrated and so users have to first register with the Catch-all IdP to use the platform. The WACREN Identity Federation is being developed and will soon be integrated, bringing with it more IdPs. In addition, discussion was initiated with the Grid ID Pool (GrIDP) a catch-all test federation that federates a number of African IdPs that were developed in ei4africa FP7 project. Figure 3: WACREN Colaboratorio login page with NgREN Catch-all IdP 12

3- SERVICES The WACREN Colaboratorio already has all the features and services of the RedCLARA Colaboratorio. These are: Communities, Wiki, FileSender, and WebConference. Below we describe the services in some detail. 3.1 Communities The Communities service is central to Colaboratorio. It allows end users to create and manage online groups for collaboration and information sharing. The service is based on Joomla and seamlessly integrates with Mailman, the result of which is that when Community is created, a Mailman list is also created. When a user posts a message onto the Community, the message is automatically sent to the rest of the Community members via email. In the same way emails posted to the Community email address are automatically posted to the Community page on Colaboratorio. This feature enables end users not to miss messages even when they do not log into Colaboratorio. Currently, the WACREN Colaboratorio is using RedCLARA mailman, but the team is working on integrating with the WACREN mailman. 3.2 Wiki A Wiki service based on MediaWiki is available on the WACREN Colaboratorio for users to collaboratively work on documents. This is handy for communities that have to provide input into documents. The same also is used for sharing documents within communities. 3.3 FileSender FileSender, called envio on Colaboratorio, is a unique service that allows end users to send large files that would otherwise not be able to go through via email. The service is based on FileSender and Assemblia. Users wanting to send large files upload them on the platform and the file is available for a time to the recipient. This is a useful service especially for the research community who often times need to send large files to their peers and collaborators. 3.4 Web conference The WACREN Colaboratorio also comes with a web conferencing service, which allows users to conduct web conferences with peers and collaborators from anywhere. Each user, upon registration automatically has a private room that can be used for web conferences. Each Community also has a web conferencing room. The service uses MCONF, which is hosted in RedCLARA infrastructure. In addition, the service comes with SIVIC, an H232 videoconference scheduling system that point to an MCU. Currently, this service is pointing to RedCLARA s MCU. 13

4- FURTHER WORK With the achieved implementation, WACREN users can access Colaboratorio services in no time. Furthermore, there are some actions that will contribute to enhance and extend the platform: 1. Connection of Colaboratorio - WACREN Container from other IdPs (GrIdP, WACREN EduID) WACREN is developing additional IdPs, and all of them shall be integrated to the Colaboratorio instance. 2. Development of components to allow WACREN to write custom content on News, Academic Breaking News and Global Agenda Colaboratorio s Main page components. The Colaboratorio has some components that can have localized content. For instance, when people enter to the WACREN Colaboratorio, they would like to see the most recent News, and Agenda from their regional network. Colaboratorio design will allow to integrated RSS channels or news feeds per integrated partner. 3. Development of a Learning Management System (LMS) based on Moodle. This was included in the Description of Work. A needs analysis will be conducted to collect the most needed features and services for inclusion into the WACREN Colaboratorio. 4. Translation into the French language. The majority of West and Central African countries are Francophone. To ensure that there is ease of use of Colaboratorio, the service will be translated to French. 5. Further customisation of the WACREN Colaboratorio The WACREN Colaboratorio will be further customized and branded for WACREN. This includes the landing page and the Community email lists. 5. REFERENCES [R1] https://en.wikipedia.org/wiki/saml_2.0 [R2] WACREN Colaboratorio URL: http://community.wacren.net 14

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information