Pre-project discussion
Timeline
- Target production date: Fall 2022
- Transition: Summer II - Fall 2022
- Maybe a transition period
- Maybe a transition point
- Onboard in service: Jan 2022
Transition options
Hard cutover
Dual profile
Dual auth
Draft of project scope
- Stake holders
- Major milestones
- Anticipated resources
- Budget
- What work needs set aside to get this done
External Resources
- Liberty University
- TJ Norton
- In process of switching to EAP-TLS
- Onboarding tool is SecureW2
- UNC (Ryan Turner)
blockers
- On boarding tool
- CA for users
- CA for auth server
Questions:
- Do we want on-boarding as a cloud SaaS?
- Do we care if the pki is in the cloud?
- Define what the cert actually asserts
- Creating a trust relationship between a device and the entity VT
- Associating a user/entity/org with that device
- Define a CPS
- Do we have a crl/ocsp? (prolly not)
- What attributes does the root CA need?
Endpoint management
We want to be able to integrate with:
- JAMF (macOS)
- InTune/AD (Windows)
- Bigfix
- macOS
- Windows
- Optional