Versions Compared

Old Version 70

changes.mady.by.user mhodges

Saved on

compared with

New Version Current

changes.mady.by.user mhodges

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • Authorization Guests
    • Currently a person must have a UH account in order to be authorized to perform any UH services.  The higher ed community is working on providing a technical solution for proxying authorizations such that non-UH credentials can be utilized to perform limited functions.  For example, a UH student could invite her mom to pay per tuition on her behalf.  Mom would receive an emailed invitation to her, say, LinkedIn account.  Mom could then use her LinkedIn credentials to authenticate to the UH service that would allow her to pay her daughter's tuition.
  • Conference attendees
    • possibly candidates for VIA program in conjunction with local authorization schemes
  • Consultants
    • Consultants may be hired to install software on University infrastructure and require shell access, MFA, etc
    • VIA does not provide enough functionality to allow for the provisioning of shell access, etc.
  • Job applicants
  • Non-credit students
    • When asked ITS Help Desk assists with issuing UH Numbers and avoiding duplications.
    • Non-credit students are assigned a role@affiliation of "other@campus" where the "campus" reflects the campus code (see Organization Unit) of the campus with which the student is affiliated.
  • Other department sponsorships - UCLA, UISFL, Infusion Institute (sponsorship with East West Center and Dept of Philosophy), Senior Citizen programs (all campuses), Visiting Colleagues, etc.  Some of these courses may last a week or two weeks.
    • ITS Help Desk assists with issuing UH Numbers, identity verification should be done by the sponsoring department.
  • Outreach College (non credit classes, eg Dongnam University)
    • (see "non-credit students" above)
  • Parents
    • The future Parent Portal will allow "parents" or whomever is willing to pay tuition on behalf of a student to access the Parent Portal and make payment. The "parent's" email address becomes their "username" and a password is generated and emailed to them.
  • Post-Doctoral Students - non UH
    • possibly candidates for VIA program in conjunction with local authorization schemes
  • Prospective students
  • Registered Independent Organization (RIOs)
    • One or more individuals can be associated with a Departmental/Organizational UH Username established for an RIO.
    • Many individuals can be considered members of an RIO.
  • Research Scholars - non UH
    • possibly candidates for VIA program in conjunction with local authorization schemes
  • Spouse
    • Spouse living with a dorm student.
  • SCVP, Senior Citizen Visitor Program through the SEED Office (Manoa)
    • SCVP participants are treated like "uh departmental affiliates" and would be entered as "other@uhm"  ITS Help desk assists with issuing UH Numbers and avoiding duplications.  SEED handles identity vetting.
  • UH Casual Hires that do not have a UH Username
    • They are authorized to access to the UH Online Paystub application.
    • Since they are entered via PeopleSoft, they are able to create a UH Username for themselves.
  • UHF Employees
    • There are select UH services that would benefit from allowing them to authentication with their UHF credentials.
    • The know use-case is Laulima since the Security Awareness Training certification modules are hosted there.
  • UHM Campus Center HELP students
    • Eligible for a OneCard; ITS Help Desk assists with issuing UH Numbers and avoiding duplications.  HELP handles identity vetting.
    • Hawaii English Language Program (HELP). Sends ITS Help Desk a student list to add manually 2-3 times a semester (based on their program sessions). There are anywhere from 30-100 names provided at one time.
      • If HELP students also obtain Manoa "guest" ID cards, then it appears they will always be entered twice, once by Help Desk, and once by the ID office?
    • HELP students are assigned a role@affiliation of "other@uhm"
  • UHM Campus Center NICE students
    • Eligible for a OneCard; a unique identification number will be required instead of a UH Number (to be determined).
    • Currently NICE students are entered into VIA for authentication purposes.
  • UHM Hamilton Library Community Borrowers
    • Members of the general community may obtain from the library a library card.
      • According to their website, it appears they require a "formal" photo ID, though they include an ID card of questionable reliability (Kingdom of Hawaii ID).
    • Data Elements
  • VIA Users
    • The Visitor Internet Access applications allows fac/staff to authorize visitors utilize our wireless network. The visitor's email address becomes their "username" and a password is generated and emailed to them.
    • VIA Users can be granted additional rights locally through the use of secondary registration at a unit LDAP server (and authenticate e.g. through pass-through authentication or similar methods)
    • VIA Users can authenticate through the UH Web Login Service and to the campus wireless network.
  • Visiting Colleagues
    • Upon request, a visiting colleague may be treated just like departmental affiliates and would be entered as "other@<campus>" for whatever duration of time the sponsoring department requests, up to one year.
  • Consultants
    • Need to sign the GCN and related acknowledgements.
    • May need access to shell accounts depending on the statement of work.
    • Need to be able to easily and quickly revoke all access.

...