Meeting the InCommon Assurance profile criteria using Active Directory

[Ron Thielen <>]

I know it’s a nuisance, but I am sending two files as email attachments rather than wiki postings.  I did not see an obvious Confluence group for restricting any of our wiki pages, and as I said last week, these are very drafty.

I’ll likely eventually contribute the Perl and PowerShell scripts if this is accepted and deemed useful

 

Ron

 

From: [mailto:] On Behalf Of Ann West
Sent: Thursday, March 14, 2013 4:11 PM
To:
Subject: [AD-Assurance] Call tomorrow at Noon ET

 

Hi All,

 

As arranged last week, our next AD-Assurance Call is tomorrow (Friday March 15) at Noon ET.

+1-734-615-7474 PREFERRED

+1-866-411-0013

0161803# 

 

Agenda

--------

https://spaces.internet2.edu/display/InCAssurance/AD+Alternative+Means+-+2013

• Notes look okay?
• Action items
  • Ann will invite Chris Irwin from MS to join the group
  • Ann will work with Debbie Bucci (NIH) to set up calls with Federal Agencies that have certified IdPs.
  • Michael will add a scope statement to the Charter Page.
  • Etan will pursue developing approach for Office365 and Bronze/Silver compliance.
  • Michael and Eric will develop a draft table in the wiki that summarizes the profile requirements, relevant AD behaviors and gaps.
  • Ron will send a draft of log checking as compensating control. 
  • Ann will set up a standing weekly call. 
• Review Scoping

• Summary of IAP elements risks by AD Product 
• Next Call

Hope you can join us,

Ann

Attachment: AD Audit Alternative Means.docx
Description: AD Audit Alternative Means.docx

Attachment: Silver AD Audit Process.pdf
Description: Silver AD Audit Process.pdf