GSA Auth - Yello - Githubissues

JJediny commented 2 months ago

### Tasks
- [x] Submit Intake Form https://docs.google.com/forms/d/e/1FAIpQLSeyPMkNiJh70lPl2xsbg1UUeg5D-QG22YpoSVJlQQnpHeCeMw/viewform
- [x] Swap SecureAuth to Okta SAML Certificate
- [x] Pre-communications to Users
- [x] Date selected to swap out IDP

MichaelSides commented 2 months ago

Kickoff meeting scheduled with GSA Auth/SSO team on Weds 9/4/24

MichaelSides commented 2 months ago

Reviewed vendor/SP documentation and filled out and submitted the onboarding form: https://www.google.com/url?q=https://docs.google.com/forms/d/e/1FAIpQLSeyPMkNiJh70lPl2xsbg1UUeg5D-QG22YpoSVJlQQnpHeCeMw/viewform?usp%3Dpp_url%26entry.1575062603%3DYello%26entry.1068241573%3DSecureAuth598%2B(DEV%2BMFA)%26entry.483303120%3DMichael%2BSides,%2BLenia%2BCash%26entry.575285402%3Dmichael.sides@gsa.gov,%2Blenia.cash@gsa.gov%26entry.2110339142%3DSAML%26entry.1387294741%3DTBD%26entry.1062551902%3DTBD%26entry.924159126%3DEmailAddress%26entry.562747773%3DEmail%2BAddress%26entry.1930524982%3DSHA256%26entry.450740736%3DSHA256%26entry.971241504%3DNone%26entry.307660433%3DNone&sa=D&source=calendar&ust=1725885715702981&usg=AOvVaw0zgxUmdJsI0ihj-NTAmk64

POTENTIAL BLOCKER: Sent a request to the vendor/SP for assistance in definitively identifying the Assertion Consumer Services (ACS) URL(s) and Audience URI (SP Entity ID). There is limited information in the FedRAMP SSP and terminology is not matching up.

MichaelSides commented 2 months ago

9/5/24: The vendor/SP provided metadata file for prod environment, which was added to the intake form. Project has officially kicked off.

MichaelSides commented 2 months ago

Week of 9/9/24:

Decision is pending on USDC System Owner as to whether the (unused) dev environment should be migrated first and if that would provide any benefit at this point.