Overview

IAM is one of the cornerstones of a modern information security program. As more of our systems and applications go online, a solid identity infrastructure forms a key line of defense against the intentions of malicious actors. IAM ensures that the right people get access to the right resources and applications on time. With effective IAM systems and processes in place, everyone can access the tools they need to do their jobs effectively and safely.

The IAM team is comprised of several individuals who are tasked with the development, maintenance and operation of our core identity services. They have a commitment to operational excellence and take seriously their critical role in enabling the mission of the University.

Team having a discussion.

Services

Enterprise Active Directory (EAD)

EAD is a platform that provides authorization, roles and group services. It is a central database containing user’s information that will be used to authenticate and authorize them.

Weblogin

Weblogin is the UTORauth web single sign-on service. It is used with hundreds of University services to provide authentication via UTORid/password.

UTORMFA

UTORMFA is the University of Toronto’s multi-factor authentication solution. ​UTORMFA verifies your identity using a second factor like a mobile device or hardware token ensuring that only you can login.

UTORGrouper

UTORGrouper helps manage information risk by providing a secure and standards-based means to manage authorizations across multiple services, making use of groups.

UTORauth

UTORauth is the University of Toronto’s central authorization and authentication database. UTORauth collects ID data from a variety of authoritative sources around campus to issue you a UTORid.

Transport Layer Security (TLS) server certificates

We offer Sectigo TLS certificates for server administrators to ensure secure data transport. The service includes features like multiple types of certificates, no-cost issuance under a university agreement, and an added layer of verification and authorization to enhance security.

Featured project

Using UTORMFA via a cell phone.

UTORMFA

UTORMFA is the University of Toronto’s multi-factor authentication solution. It verifies your identity using a second factor like a mobile device or hardware token ensuring that only you can login.

With the completion of UTORMFA roll out to the U of T community, the IAM team is seeking application owners to integrate their applications with UTORMFA. Contact us at utormfa@utoronto.ca for more information.

Contact

Simon Cheng

IAM Developer (MFA)
cheng-si.cheng@utoronto.ca

Jin Fang

Manager, Identity and Access Management
jun.fang@utoronto.ca

Paul Fardy

Authentication Administrator
paul.fardy@utoronto.ca

Pete St. Onge

Identity Operations Supervisor
pete.stonge@utoronto.ca

Leroy Tang

Enterprise Active Directory Administrator
leroy.tang@utoronto.ca

Matt Wilks

Senior IAM Architect
matt.wilks@utoronto.ca

Xin Xiang

Senior IAM Architect
xiang-xin.xiang@utoronto.ca

Jonathan Zhao

IAM Developer
jinqiang.zhao@utoronto.ca