UW Information Technology Service Catalog

Services offered by UW-IT to the University of Washington community

Identity and Access Management

Certificate Services

0
Your rating: None
Brief Service Description: 
SSL certificates for web servers, services, and clients.
Service Description: 

Certificate Services allow to you to obtain X.509 certificates that may be installed on servers or clients to provide authentication and encryption. SSL certificates installed on servers allow clients to verify the identity of the server and for the server and client to establish a secure communication channel using SSL/TLS. Client certificates enable computers and processes to connect to Web services, directories, and other services that require client certificate authentication.

Service Options: 

Certificate Services options include:

  • InCommon Certificate Authority (InCommon CA) - Provides commercial-grade SSL server certificates trusted by all modern browsers. Certificates are available for all subdomains of *.washington.edu and *.uw.edu. Other DNS domains owned by UW departments may be added to the service upon request.
  • UW Services Certificate Authority (UW CA) - Provides SSL server certificates and client certificates. SSL server certificates issued by the UW CA are not trusted by default in any browsers. Client certificates issued by the UW CA are required for authentication to many UW Web services and directories.

 To learn more about the options and their uses, refer to UW Certificate Services in our wiki.

Eligibility: 

UW employees registered as contacts in UW DNS for the domain name requested in a certificate.

How to Order: 

Self-service tools are supported for new certificate requests and management functions.

To learn more about requesting certificates, refer to UW Certificate Services in our wiki.

Availability: 

Available 24 hours a day, 7 days a week.

 

Price: 

This service is included in the Technology Recharge Fee.

Additional Information: 

To learn more about the options and their uses, refer to UW Certificate Services.

Service Level Description: 

Uptime: Continuous, all days and hours. Service issues will be addressed based on priority and resource availability.

Support Information: 

UW Information Technology Service Center
Location: UW Tower C-3000 (4333 Brooklyn Ave. NE)
Online Form: http://www.uw.edu/itconnect/help
Email: help@uw.edu
Phone: 206-221-5000
Business Hours: http://www.uw.edu/itconnect/gethelp

Contact for More Information: 

Email: help@uw.edu

Phone: 206-221-5000

Maintenance
Last Review Date: 
Wed, 2014-07-09
Keywords: 
<p><span id="part1">Certificate, SSL, X.509</span></p>

Authentication

0
Your rating: None
Brief Service Description: 
Verify the identity of a person, computer, or application
Service Description: 
Authentication allows you to establish the identity and authenticity of a person, computer, or application.  Authentication often involves verifying something the user knows (e.g., a UW NetID and password) or something the user has (e.g., a security token or private key).
 
UW Information Technology supports several enterprise authentication services to help you enable secure access to Web sites, online information, desktop computers, walk-in labs, and other resources, while adhering to UW information security policies.

 

Service Options: 

Authentication service options include:

  • Kerberos - Provides UW NetID authentication using the Kerberos network authentication system; also known as the "u.washington.edu" Kerberos realm.
  • Web Authentication Services - Provides UW NetID authentication and single sign-on (SSO) to participating Web sites; provides a trusted Web site (weblogin.washington.edu) for entering and verification of user credentials; supports "federation" via InCommon and SAML protocols; software options include Pubcookie and Shibboleth (preferred) for Apache and Microsoft IIS Web servers.
  • Token Authentication Service - Provides multi-factor authentication using Entrust tokens as a 2nd authentication factor for access to more sensitive UW applications.
  • UW Windows Infrastructure - Provides an Active Directory forest for Kerberos and NTLM authentication for all UW NetIDs; also known as the "netid.washington.edu" Kerberos realm.
Eligibility: 

UW faculty; UW staff; UW students; UW affiliated organizations

How to Order: 

UW Information Technology Service Center
Location: UW Tower C-3000 (4333 Brooklyn Ave. NE)
Online Help Form: http://uw.edu/itconnect/help
Email: help@uw.edu
Phone: 206-221-5000
Business Hours: http://uw.edu/itconnect/gethelp

Availability: 

Hours available: 24 hours a day, 7 days a week

Price: 
This service is included in the Technology Recharge Fee.
Service Level Description: 

Uptime: Continuous, all days and hours. Service issues will be addressed based on priority and resource availability.

Support Information: 

UW Information Technology Service Center
Location: UW Tower C-3000 (4333 Brooklyn Ave. NE)
Online Form: http://www.uw.edu/itconnect/help
Email: help@uw.edu
Phone: 206-221-5000
Business Hours: http://www.uw.edu/itconnect/gethelp

Contact for More Information: 

Email: help@uw.edu
Phone: 206-221-5000

Maintenance
Last Review Date: 
Fri, 2014-07-11
Keywords: 
<table border="0" cellpadding="0" cellspacing="0" class="ms-formtable" width="100%"> <tbody> <tr> <td class="ms-formbody" id="SPFieldNote" valign="top" width="450"> <div class="ms-rtestate-field"> <div> Authentication, UWNetID, SecurID, Entrust, multi-factor authentication, two-factor authentication, weblogin, pubcookie, shibboleth, kerberos, certificate services, certificates, certs, SSL, X.509, InCommon, UWCA, UWWI</div> </div> </td> </tr> <tr> <td class="ms-formlabel" nowrap="nowrap" valign="top" width="165"> &nbsp;</td> </tr> </tbody> </table> <p>&nbsp;</p>
Notes: 
<p>07/11/14 - Added Michael Brogan as service manager -MM</p>

UW Windows Infrastructure

0
Your rating: None
Brief Service Description: 
Infrastructure enabling Microsoft technologies
Service Description: 

The UW Windows Infrastructure (UWWI) is a set of infrastructure capabilities enabling Microsoft technologies. In many cases, the infrastructure capabilities meet business needs regardless of the client platform or technology.

Service Options: 
  • NETID Domain service. Provides Active Directory Domain Services with integrated UW NetIDs and Groups service groups.
    • Domain trusts. UW organizations with an existing domain can request a one-way incoming trust to leverage the authentication, authorization, and directory services provided.
    • Delegated OUs. UW organizations can manage and join their computers to the NETID domain service. They retain autonomy and avoid the cost of running their own Windows domain.
  • Name resolution services.
    • Netbios name resolution via WINS. Available to anyone on campus.
    • Dynamic DNS (DDNS) zone services. Available to Delegated OU customers only. No reverse DNS capability.
  • Microsoft license activation. Provides Microsoft product activation service via a Microsoft Key Management Server (KMS) tied to the campus agreement.
  • LDAP based authentication, authorization, and directory services for application integration (this capability is available, but in containment)
  • Federated authentication. ADFS provides logon tokens for Microsoft centric applications that can cross enterprises boundaries. We run this capability in partnership with the Authentication service.
  • Azure Active Directory. This component provides multiple capabilities based on emerging technologies and has likely changed in signficant ways since we wrote this. Among the capabilities are:
    • OpenID/OAuth2/SAML/WS-Federation based authentication
    • Phone-based multi-factor authentication (may require additional purchase)
    • SaaS application portal with tightly integrated authentication
The services entitled Authentication, Access Management, Directory Services, UW NetID, and Campus DNS all have overlapping capabilities with this service. In some cases, there is tight integration with those other infrastructure services.
Eligibility: 

UW faculty, UW staff, UW students, Anyone with a UW NetID

How to Order: 

UW Information Technology Service Center
Location: UW Tower C-3000 (4333 Brooklyn Ave. NE)
Online Help Form: http://uw.edu/itconnect/help
Email: help@uw.edu
Phone: 206-221-5000
Business Hours: http://uw.edu/itconnect/gethelp

Availability: 

Hours available: 24 hours a day, 7 days a week

Price: 

This service is included in the Technology Recharge Fee.

Additional Information: 
Service Level Description: 

Uptime: Continuous, all days and hours. Service issues will be addressed based on priority and resource availability.

Support Information: 

UW Information Technology Service Center
Location: UW Tower C-3000 (4333 Brooklyn Ave. NE)
Online Help Form: http://uw.edu/itconnect/help
Email: help@uw.edu
Phone: 206-221-5000
Business Hours: http://uw.edu/itconnect/gethelp

Contact for More Information: 

Email help@uw.edu or call 206-221-5000.

Maintenance
Last Review Date: 
Tue, 2014-07-01
Keywords: 
<p>UWWI</p>
Notes: 
<p>2/25/13:&nbsp; Removed <font color="#000000">UW Windows Forest option from Service Options section as it </font><font color="#000000">being removed as an available option for customers.</font>&nbsp; See RT 1781829 for full details.</p> <p>07/01/14: Updated as per Brian&#39;s RT ticket (2266496) for annual service catalog audit -MM</p>

Directory Services

3
Your rating: None Average: 3 (1 vote)
Brief Service Description: 
Access well-managed identity information based on UW NetIDs
Service Description: 

Enterprise Directory Services (EDS) offer high-availability, read-only access to well-managed identity information based on UW NetIDs. These services provide user profile information, via standard protocols, including basic identification, group memberships, and affiliation data compiled from UW systems of record (e.g., HEPPS, SDB, Advance, Person Registry).

Service Options: 

Enterprise Directory Services options include:

  • UWWI Active Directory - Provides LDAP directory services including user accounts for all UW NetIDs and group data from the UW Groups service; part of UW Windows Infrastructure (UWWI), this service is particularly relevant to customers seeking integration with the Windows platform.
  • Person Directory Service - Provides LDAP access to common UW identifiers and affiliation data for all UW members and affiliates; additional contact data is available for employees, students, and alumni; data is searchable by official UW identifiers (e.g. UW NetID, UW Registry ID, Student ID, Employee ID).
  • Groups Directory Service - Provides LDAP access to group data managed in the UW Groups service.
Eligibility: 

UW faculty, UW staff

How to Order: 

UW Information Technology Service Center
Location: UW Tower C-3000 (4333 Brooklyn Ave. NE)
Online Help Form: http://www.uw.edu/itconnect/help
Email: help@uw.edu
Phone: 206-221-5000
Business Hours: http://www.uw.edu/itconnect/gethelp

Availability: 

Hours available: 24 hours a day, 7 days a week

Price: 

This service is included in the Technology Recharge Fee.

Service Level Description: 

Uptime: Continuous, all days and hours. Service issues will be addressed based on priority and resource availability.

Support Information: 

UW Information Technology Service Center
Location: UW Tower C-3000 (4333 Brooklyn Ave. NE)
Online Help Form: http://www.uw.edu/itconnect/help
Email: help@uw.edu
Phone: 206-221-5000
Business Hours: http://www.uw.edu/itconnect/gethelp

Contact for More Information: 

Email: help@uw.edu
Phone: 206-221-5000

Maintenance
Last Review Date: 
Fri, 2014-07-11
Keywords: 
<p>EDS, PDS, GDS, UWWI, Active Directory</p>
Notes: 
<p>07/11/14: Updated title to match Ymir, added Jon Pass as service manager -MM</p>

Access Management

2
Your rating: None Average: 2 (2 votes)
Brief Service Description: 
Manage groups, authorizations, and access to resources and applications
Service Description: 

Access management allows you to manage, control, and audit access to online data, resources, and applications. It involves managing privileges, group memberships, and service subscriptions. Access management allows you to manage risk and to comply with governing policies. In some cases you can also delegate management authority to others.  

UW Information Technology supports enterprise access management through:

  • ASTRA (Access to Systems Tools Resources and Applications)
  • UW Groups service
  • UW Subscriptions (Uniform Access) service
Service Options: 

Access management service options include:

  • ASTRA - Provides enterprise authority management and privilege management services; UW 'delegators' and 'authorizers' use the ASTRA Web site to manage the authority and assign authorizations; consuming applications use the ASTRA Web service to obtain the authorizations assigned to a specific user (UW NetID) or application.
  • UW Groups service - Provides enterprise group management for access control, collaboration, and messaging; it supports groups usage throughout the UW by making it easier to identify, define, and reuse groups in many systems and applications; group memberships comprise UW NetIDs, federated IDs, DNS names, as well as other UW Group IDs.
  • UW Subscriptions (Uniform Access) service - Provides access to many central UW computing services such as UW Email, Web Publishing, Odegaard Learning Commons, UW Libraries off-campus proxy; enables provisioning and de-provisioning of access based on UW NetIDs and university affiliations (e.g., student, employee, alumni); supports UW NetID service activation and deactivation of services.
Eligibility: 

UW faculty, UW staff, UW students

How to Order: 

UW Information Technology Service Center
Location: UW Tower C-3000 (4333 Brooklyn Ave. NE)
Online Help Form: http://uw.edu/itconnect/help
Email: help@uw.edu
Phone: 206-221-5000
Business Hours: http://uw.edu/itconnect/gethelp

Availability: 

Available 24 hours a day, 7 days a week, with the exception of irregularly scheduled maintenance

Price: 

This service is included in the Technology Recharge Fee.

Service Level Description: 

Uptime: Continuous, all days and hours. Service issues will be addressed based on priority and resource availability.

Support Information: 

UW Information Technology Service Center
Location: UW Tower C-3000 (4333 Brooklyn Ave. NE)
Online Help Form: http://uw.edu/itconnect/help
Email: help@uw.edu
Phone: 206-221-5000
Business Hours: http://uw.edu/itconnect/gethelp

Contact for More Information: 

Email help@uw.edu
Phone: 206-221-5000

Maintenance
Last Review Date: 
Wed, 2013-05-29
Keywords: 
<p>ASTRA, groups, privileges, entitlements, subscriptions</p>