Thursday, April 7, 2022
9:00 AM - 10:15 AM
Ed-Fi technology and tools are typically deployed in larger architectures and existing environments as commonly found in state-led systems. Credential management for Ed-Fi APIs is a topic where various states have implemented different approaches to connect with enterprise-level identity management systems. This session will be an active discussion amongst these approaches with thoughts ahead in the future to accommodate other state-led projects to share best-practices and techniques helpful to those with similar needs.
These broad session notes attempt to capture the spirit of the discussion and should not be interpreted as a transcript. Although Ed-Fi Alliance staff were involved in capturing these observations, the notes below should not be construed as official, complete, or 100% accurate.
Deb Dailey from IN
David Reeg from MN
Jeremy Perkins from Instructure presenting TX
Presenters showed three different needs and current accommodations for API credential management and distribution to member districts. The presentations had some commonalities for credential management, such as key/secret creation and distribution. Each presentation also highlighted workflow steps unique amongst these 3 state contexts and solutions used to accommodate district needs. Session was in agreement that more administrative APIs are needed from Ed-Fi to allow for the automation and distribution of API credentials. Ed-Fi noted a draft specification for the Admin API underway and will continue these conversations ahead towards the building of technology to accommodate the shared needs.
Themes that emerged were:
- how to handle claim sets and API profiles in the most secure and consistent way
- How to reduce workloads on LEAs and prevent/protect them from configuration mistakes
- How much to enable for LEAs to self-serve vs configuring for them