- Performed regression testing of the most recent tag (3.4.1_03082024_rocky8_multiarch) of the InCommon Trusted Access Platform (TAPTAP The InCommon Trusted Access Platform (TAP) is an identity and access management suite of software.) Shibboleth Service Provider (SPSP A Service Provider (SP) is the server/system which hosts the resource. In this context, you (or your vendor) are configuring the SP that provides a service to your customers. Your SP will integrate with our IdP. For more information, see our Concepts page.) image.
- Updated MFAMFA Authentication makes use of one or more factors of authentication: something you know (e.g., a password), something you have (e.g., your smartphone), or something you are (e.g., a fingerprint). Multi-Factor Authentication (MFA) makes use of two or more factors when authenticating you. For more information, see our Concepts page. Portal to use tested tag.
- This release also resolves an issue where Mission Critical Information Resources Staff may have had difficulty managing their devices in the MFA Self-Registration Portal.
Authentication Services Change Logs
Below are change logs for IAM services which fall under the Authentication category.
Change Log – Enterprise Authentication – v20240517134704
- Performed regression testing of the most recent tag (4.3.3_20240415_rocky8_multiarch) of the InCommon Trusted Access Platform (TAPTAP The InCommon Trusted Access Platform (TAP) is an identity and access management suite of software.) Shibboleth Identity Provider (IdPIdP An Identity Provider (IdP) is a software tool or service that offers user authentication as a service. The IdP manages the user's primary authentication credentials and issues assertions derived from those credentials. At UT Austin, the primary IdP used to authenticate the UT EID and EID Password is Enterprise Authentication, which is managed by the IAM Team. For more information, see our Concepts page.) image.
- Updated Enterprise AuthenticationAuthentication Authentication is the act of determining that a person is who they claim to be. For more information, see our Concepts page. to use tested tag.
- Updated Splunk log endpoint.
Change Log – Enterprise Authentication – v20240311151427
- Updated internal OIDCOIDC OpenID Connect 1.0 (OIDC) is an authentication layer built on OAuth 2.0 where the identity provider that runs the authorization server also holds the protected resource that the third-party application aims to access. and SAMLSAML Security Assertion Markup Language (SAML) is a standard, XML-based language for exchanging authentication and authorization data between identity providers and service providers. This standard is currently used by Enterprise Authentication (as well as hundreds of service providers that integrate with our identity provider). components to improve security.
- Improved session management to reduce re-authenticationAuthentication Authentication is the act of determining that a person is who they claim to be. For more information, see our Concepts page. frequency.
Change Log – Enterprise Authentication – v20240228184941
- Updated internal OIDCOIDC OpenID Connect 1.0 (OIDC) is an authentication layer built on OAuth 2.0 where the identity provider that runs the authorization server also holds the protected resource that the third-party application aims to access. components to improve security.
Change Log – Enterprise Authentication – v20231130185916
- Performed regression testing of the most recent tag (4.3.1_20231128_rocky8_multiarch) of the InCommon Trusted Access Platform (TAPTAP The InCommon Trusted Access Platform (TAP) is an identity and access management suite of software.) Shibboleth Identity Provider (IdPIdP An Identity Provider (IdP) is a software tool or service that offers user authentication as a service. The IdP manages the user's primary authentication credentials and issues assertions derived from those credentials. At UT Austin, the primary IdP used to authenticate the UT EID and EID Password is Enterprise Authentication, which is managed by the IAM Team. For more information, see our Concepts page.) image.
- Updated Enterprise AuthenticationAuthentication Authentication is the act of determining that a person is who they claim to be. For more information, see our Concepts page. to use tested tag.
- Updated OIDCOIDC OpenID Connect 1.0 (OIDC) is an authentication layer built on OAuth 2.0 where the identity provider that runs the authorization server also holds the protected resource that the third-party application aims to access. OPOP An OpenID Provider (OP) is an entity that has implemented the OpenID Connect and OAuth 2.0 protocols, OP’s can sometimes be referred to by the role it plays, such as: a security token service, an identity provider (IDP), or an authorization server. plugin to latest version (3.4.0).
- Updated OIDC Common plugin to latest version (2.2.1).
- Updated Duo OIDC plugin to latest version (1.4.1).
- Added OIDC Config plugin at latest version (1.0.1).
- Added configurations to support OIDC integrations.
- Retired unused integration configurations.
