Skip to Content.
Sympa Menu

assurance - [Assurance] RE: Draft note to InCommon Participants list re: InCommon Silver with AD Cookbook Public Review

Subject: Assurance

List archive

[Assurance] RE: Draft note to InCommon Participants list re: InCommon Silver with AD Cookbook Public Review


Chronological Thread 
  • From: "Roy, Nicholas S" <>
  • To: "" <>
  • Subject: [Assurance] RE: Draft note to InCommon Participants list re: InCommon Silver with AD Cookbook Public Review
  • Date: Wed, 11 Jan 2012 21:51:36 +0000
  • Accept-language: en-US

Here’s a revised version of the note to the participants list for your review.  I’ll plan to send it out tomorrow morning unless anyone tells me not to.

 

Thanks,

 

Nick

 

<DRAFT>

Subject: Public Review Draft: InCommon Silver with Active Directory Cookbook January 12-31

 

Greetings, InCommon Participants,

 

As you’re probably aware, InCommon is preparing to begin accepting applications for its assurance program in the near future.  A number of InCommon participant institutions have been preparing to submit applications to the assurance program to allow them to assert InCommon Silver level of assurance.  Some of us have collaborated on building documentation that will help us to assess and configure our systems for compliance with the standards in the Identity Assurance Profiles for Bronze and Silver (http://www.incommon.org/docs/assurance/IAP_V1.1.pdf).  We’ve been working for almost a year on a draft “cookbook” that will help those who have Microsoft’s Active Directory Domain Services (commonly referred to as “Active Directory” or “AD”) deployed, be able to configure it for compliance with the technical requirements for Silver.

 

We need your help to get the “draft” tag removed from this document.  Please take some time to review it on the InCommon Wiki:  https://spaces.internet2.edu/x/w56KAQ  We have a space where you will also find meeting notes from the team that built this document, as well as a page that we’ll use to keep track of your feedback during the review process.  You’ll find links to all of those things, here: https://spaces.internet2.edu/x/dJSVAQ

 

If you have knowledge of, interest in, or have Active Directory Domain Services deployed at your institution, please take some time to review the problem statements, risk mitigation strategies, compensating controls and sample management assertions in the document, as well as the overall flow of the document.  We’d like to get feedback from as large an audience as possible, so please also feel free to share this with any auditors, IT security or policy officers, Active Directory specialists or anyone else you think may have a stake in the security and configuration of your authentication infrastructure.  Please also keep an eye out for any typographical or other simple errors.  Send comments to: .  We’d appreciate getting feedback on the document before January 31st.

 

Thank you,

 

Nick

------------

Nicholas Roy – Identity Architect

The University of Iowa / ITS - Administrative Information Systems / Directory and Authentication

</DRAFT>




Archive powered by MHonArc 2.6.16.

Top of Page