Colleagues

I think we have now agreed on these problem and solution definitions:

Problem Definition

LIRs would like a mechanism to easily add/remove users to centralised SSO authentication groups for maintaining objects in the RIPE Database.

Solution Definition

Stage 1

-Non billing Users listed in an LIR´s portal account will be contained in a default authentication group

-Non billing users added or removed through the portal UI will be automatically adjusted in this group

-This authentication group can be referenced in MNTNER objects by a new authentication method

-These authentication groups for LIRs will be stored in a way that updates to the RIPE Database is not dependent on the availability of the portal service

Stage 2

-Non billing Users listed in an LIR´s portal account can be added to and removed from user defined SSO authentication groups

-Each User can be a member of any number of named groups

-The authentication groups can be configured using the portal UI

-These groups can be referenced in MNTNER objects by the new authentication method

The chairs will now ask the RIPE NCC to work from these definitions in preparing their implementation plan.

cheers

denis

co-chair DB-WG