TechAuthentication: Difference between revisions

From Redrock Wiki

No edit summary
No edit summary
 
Line 1: Line 1:
{{40EOL}}
<!-- table for the whole page -->
<!-- table for the whole page -->
{| style="width:100%; vertical-align:top; "
{| style="width:100%; vertical-align:top; "

Latest revision as of 11:19, 26 March 2024

    The legacy Trac 4.0 version of TutorTrac/AdvisorTrac/FitnessTrac is no longer receiving updates and will be end-of-life in 2025. Click here to schedule a TracCloud demo or reach out to sales@go-redrock.com for migration pricing or contract details.



New, easy to use interface
TracCloud features a modern, easy to use, and mobile-friendly interface, allowing you to easily find and manage your data as you need. Students, staff, and faculty will have a much easier time navigating through the system and accessing the data they need. The new dashboard offers many easy to access widgets to view and manage your data.

7018287.png

New Features
Export almost any report into Excel. Static and dynamic QR codes for touchless-kiosk environments. Unlimited custom data fields in student records, visits, appointments, and more. Customizable views of listing pages. Student timelines. Twig and HTML-supported emails and system messages. Customizable log listing and kiosk views. Center descriptions. New reports. Student success plans as a new module, along with work plans for staff. The full list of changes couldn't fit in this article, and more is being added all the time. Relating to the schedule specifically, you'll find a new appointments listing, availability badges, custom search appointment links and QR codes, unlimited customizable max appointment rules, asynchronous appointment support, and more.

4062955.png

Customizable
With Twig support, you can personalize system messages, upcoming appointment lists, emails, and more based on the users who are viewing/receiving them. From simple changes like greeting the user by name to completely changing an email based on if the related appointment was in-person or online, in a certain center, for a certain reason, even if a certain custom field in the student's profile has a specific value. This extends to the log listing and kiosks as well, where you can add or remove fields, rearrange the data that's displayed, and add custom formatting with HTML and Twig.

1670850.png

Faster
Rewritten from the ground up hosted on AWS, using a MySQL database, TracCloud is faster in every way. This performance increase compared to Trac 4.0 can be noticed throughout the entire system, with reports being especially improved. Even the biggest reports in TracCloud load within a few seconds.

3881667.png

Migrate Existing Data
Migrate your existing data from Trac 4.0, allowing you to pick up right where you left off. We'll work with you to plan out your migration, coordinating with your IT, and training your system administrators to get you started in TracCloud.

7254776.png

Click here to schedule a TracCloud demo!



Authentication Options

To use campus credentials (Single Sign-on or SSO) to sign into your Trac System, there are a few choices. Our preferred authentication method is SAML, but you may also use CAS, LDAP or Microsoft Azure. Shibboleth may be used, but only when it has a SAML or CAS front end. Please see below for more detailed technical information.
SAML Authentication
Redrock tech support and your campus IT contact will need to work together to set up SAML Authentication.

SAML requires some communication between your campus authentication server and the Redrock SAML Proxy server.

1) Your AdvisorTrac/TutorTrac software must be updated to the Feb 2019 version or later.

2) Please provide Redrock with your campus metadata (or the HTTP-POST URL).

3) Here is the Redrock Metadata link: https://saml2.go-redrock.com/simplesaml/module.php/saml/sp/metadata.php/trac4-saml

  • download and install our metadata into your SSO software.

4) We will need a test student account.

5) SAML Attribute:

  • Send username, email address, or student ID as an attribute.
  • The name of the attribute can be whatever your system uses. (examples: username, student id, email, sAMAccountName, personprincipal, name id, PersonID)
  • The attribute needs to be a unique identifier for the student account (preferably the username).
  • The attribute must be a value that we can match with the TutorTrac student or instructor account.

6) SAML Response to Redrock:

  • can be signed
  • can be encrypted
    • can be transient or persistent
    • Our SAML setup is for SP (Service Provider) initiated with Redrock as the SP.

- We have plans to support IdP (Identity Provider) initiated in the future, rollout date is TBD.

7) Your TutorTrac/AdvisorTrac URL must be reachable (without VPN credentials). Redrock IP must be whitelisted.

  • Redrock SAML Proxy IP: saml2.go-redrock.com (63.224.138.136), ports 80 and 443
  • Redrock Tech Support IP: go-redrock.com (63.224.138.155), ports 80 and 443

8) Your TutorTrac/AdvisorTrac URL must use SSL (https://TracSystem.campus.edu)

9) After the end user is finished using AdvisorTrac/TutorTrac, we can re-direct to a webpage that you specify. Please provide the exact link address (for example https://mycampus.edu).

10) Please schedule a time to test SAML configuration.


LDAP Authentication
1) The Trac system provides an LDAP test page that can be accessed from your main menu. Simply click on the Trac Man icon, then on Utilities and Prefs. There you will find a tab labeled “LDAP Tool”. Fill out the form with values provided to you by your system administrator and click test. A green response is good, a red is bad.

This is an example of a single bind LDAP test:

2) For your system to use LDAP, Redrock will require some information about your system that will be used to generate an LDAP binding script that runs when a user attempts to log in. Please send an email to helpdesk@go-redrock.com with the following information:

  • LDAP Server address
  • Base DN
  • Format of username
  • Username of lookup account (for double-bind setups)
  • Port Number (typically 389 or 636)
  • Encrypted (true or false)
  • Search Criteria (Leave as cn=NOTAUSER unless doing a double bind)

Once you send Redrock the necessary information, a team member will implement a binding script on your server and contact you once completed.


CAS Authentication

1) You will create your own weblink to the CAS portal page.

2) Redrock will need a test student account to test with.

3) Redrock needs your CAS service links:

  • Login URL (example: https://mycampus.school.edu/cas/login )
  • Logout URL (example: https://mycampus.school.edu/cas/logout )
  • Validate URL (example: https://mycampus.school.edu/cas/serviceValidate )

4) Redrock needs the CAS XML Attribute containing username (it is usually cas:user).

5) Redrock will need to put a few settings in place.

6) Schedule a time to test with us.


← Previous Page Next Page →