Skip to Content.
Sympa Menu

mfa-interop - RE: Workday (was Re: [MFA-Interop] Agenda for the 2/18/2016 MFA Interoperability Profile Working Group call)

Subject: MFA Interop Working Group

List archive

RE: Workday (was Re: [MFA-Interop] Agenda for the 2/18/2016 MFA Interoperability Profile Working Group call)


Chronological Thread 
  • From: Paul Caskey <>
  • To: Liam Hoekenga <>, "MFA Interoperability Profile Working Group" <>
  • Subject: RE: Workday (was Re: [MFA-Interop] Agenda for the 2/18/2016 MFA Interoperability Profile Working Group call)
  • Date: Thu, 18 Feb 2016 15:15:45 +0000
  • Accept-language: en-US
  • Authentication-results: umich.edu; dkim=none (message not signed) header.d=none;umich.edu; dmarc=none action=none header.from=internet2.edu;
  • Spamdiagnosticmetadata: NSPM
  • Spamdiagnosticoutput: 1:23

That’s certainly the intent, as far as I know, once this group has completed the profile for that.

 

There’s lots of interest in our work – across higher-ed worldwide, internally at InCommon, even some in the federal government.

 

Exciting times!

 

 

 

From: [mailto:] On Behalf Of Liam Hoekenga
Sent: Thursday, February 18, 2016 9:10 AM
To: MFA Interoperability Profile Working Group <>
Subject: Re: Workday (was Re: [MFA-Interop] Agenda for the 2/18/2016 MFA Interoperability Profile Working Group call)

 

I know that the Workday example is just an example, but it sets an unmaintainable precedent should it see implementation.  I would rather see MFA triggered by a vendor-independent authentication context.

 

-- 

Liam Hoekenga

ITS Identity and Access Management

The University of Michigan

 

 

 

 

 

On Thu, Feb 18, 2016 at 9:53 AM, Belcher, C W <> wrote:

Yes, the NYU writeup is a very good summary of the MFA use cases we are looking to address with Workday.  There is also some use case info on the Workday just-in-time/step-up authentication brainstorm: https://community.workday.com/idea/90665.

Having step-up MFA via SAML with Workday is a requirement for our (UT Austin’s) go-live so we have been talking to the Workday authentication team (Chris Co, Archana Ramamoorthy) about how they can use authentication context to address it.  We are supposed to work with them on some proof-of-concept testing in the next 2 weeks.

--CW
——

C.W. BELCHER, Associate Director
Identity & Access Management  |  Information Technology Services
The University of Texas at Austin  |  512-232-6519  |  FAC 326R






On 2/17/16, 6:03 PM, " on behalf of Cantor, Scott" < on behalf of > wrote:

>On 2/17/16, 6:52 PM, "Nick Roy" <> wrote:
>
>
>
>>Now that you mention it, yep, I remember that being pretty spot on:
>>https://docs.google.com/document/d/1OV9pbXt1OmB2EOclwjFx2UIi1YnIYn2cZpJRrl5gowY/edit
>
>I had forgotten ScottK had worked on it, no omission intended.
>
>
>-- Scott
>

 




Archive powered by MHonArc 2.6.16.

Top of Page