CAN-04: Open a command shell on a login server (web browser), CAN-06: Authenticate with an application, CB-08: Use a community login service with campus login servers, DA-02: Prepare data for analysis, DA-03: Analyze data from research instruments, DA-04: Analyze data generated by a simulation, DA-05: Steer a large computation while it runs, HPC-01: Use a single HPC resource for a research project, HPC-02: Use two or more HPC resources for a research project, HTC-01: Run a set of independent jobs on an HTC resource, HTC-02: Run a set of interrelated jobs on an HTC resource, VIS-01: Visualize research data using streaming video, VIS-02: Visualize research data using streaming geometry data, VIS-03: Generate visualization data for later viewing, VIS-04: Visualize and steer a simulation running on a remote resource, VIS-05: Visualize a simulation as it runs on a remote resource
Use Case Priority:
High
Track status in meeting:
yes
Description
OAuth-SSH with enhanced authentication assurance features is now available. The OAuth PAM module for the SSH server can be configured to require authentication with specific IDP(s) and a time limit on authentication. We can now finalize the design document for SSH server deployment (see XCI-496) and test the design to ensure it provides the security controls described in the security design document.
Comments
There are comments for XCI-608 that can be viewed with XSEDE authentication.