...
The University requires that the proposed solution meet the University identity access management Account Authentication Standard. The following approved upon approved methods of authorization are listed in preference. If a service does not apply good authorization practices then it is possible that all users in our directory servers (200,000+) will have access to the application.
...
- The Data Owner and Service Owner should agree on what criteria determines the membership of each user group. For a high-level overview of possible populations and their classification please see EduPerson Codes (Albany)/wiki/spaces/OCIO/pages/48285425.
- If the application has different security roles, the Data Owner and Service Owner should agree on the access role a group receives.
...
For more information please see:
...