University of Southern California CAPS: Shibboleth to SharePoint Integration
Like many colleges and universities, USC participates in a multi-organizational federated login network known as InCommon through USCNet. This federation is largely built on Shibboleth, a product popular with educational organizations and the open source community. USC CAPS wanted to allow SharePoint users to connect using their USCNet login. However, integration between SharePoint and Shibboleth is known to be quite complex. Many struggle just to get it working, let alone make it secure.
May 2013 – July 2013
To manage this highly sophisticated deployment, LMS leveraged a combination of web based forms, XML, and PowerShell scripts to provide systematic and repeatable configuration. We designed and implemented an Active Directory Federated Services based architecture, acting as claims broker between Shibboleth and SharePoint. This allowed us to transform proprietary USC claims into industry accepted standards.
We also leveraged ADFS and Beowulf™, our own suite of authentication products, to eliminate the redundant realm picker dropdowns in SharePoint and ADFS and allow ADFS users to log out of SharePoint.
Ask us for our case study about this project.
Bob Oleinik, Associate IT Director, USC Career and Protective Services