XSEDE Capability Delivery Plan for "GRP-09: Synchronize an external group"
URLs: Public, Review
Executive Summary: A community member needs to synchronize a group in the XSEDE system with a group defined in a non-XSEDE system. One notable reason is so that XSEDE’s group-based access control mechanisms (use cases GRP-12, -13, -14) can reference a group that is primarily managed in another system. For example: A multi-institution research team uses the Open Science Grid’s VOMS service to define its membership, and an XSEDE L3 service provider at Indiana University wants to authorize jobs submitted by the team. The IU service provider has determined that it would be much less expensive to use an XSEDE group than to install a local VOMS instance and use it for access control.
First CDP: 2017-11-15
- User-created groups
- Application of multi-factor authentication
- External group synchronization