Webauth decomissioning
Milestone ID: 903
All systems need to stop using Raven WebAuth for authentication of users and switch to active directory.
We propose to decommission ucam-webauth by 1 December 2024. Systems using ucam-webauth will need to migrate to the University Access Management platform, Azure Active Directory (AD) if university-wide authentication is required.
Why we’re making the change
Azure AD authenticates a broader range of users for web pages and applications and increases security by adding multi-factor authentication.
Most users are familiar with the Azure AD login screen from logging into their University Microsoft accounts and have set up second factors.
Learn how to authenticate users using Azure AD
Understanding identities
You will still need to consider access control and should not assume that a user authenticated by Azure AD is a member of staff or a student at Cambridge. Authorisation will need to be managed in the application or within Azure AD. You’ll find more about identities and groups in the Azure AD link above.
Any queries?
If you have any concerns or questions, please email servicedesk@uis.cam.ac.uk by 29 February 2024. We’re keen to identify any potential issues we need to consider. We’ll provide an update after we’ve reviewed the feedback.