Search | Directories | Reference Tools
UW Home > UWIN > Computing and Networking > Identity and Access Management > ASTRA 
Description
TSAR
User docs 
Developer docs 
Login to ASTRA
Login to ASTRA (Training Only)
Contact us

ASTRA

ASTRA Web Service Security Requirements

The current ASTRA web service security policy requires the use of SSL and X509 client certificates issued by the UWCA.

  1. Register as administrator of a DNS domain. To do so, please visit https://www.washington.edu/computing/ca/infra/, note step 1.5 and 1.6 which refer to registering your DNS.
  2. Obtain a static IP address. A static IP is a security requirement for using the ASTRA web service. You may need to request one if your workstation uses DHCP.
  3. Obtain X.509 certificates for your servers from the UW Certificate Authority (UWCA) at http://certs.cac.washington.edu
  4. Install the UWCA certificate that will identify your application on your servers.
  5. Install the UWCA root certificate in the appropriate trust store. This will enable your application to trust the ASTRA service on your servers.
  6. Inform the ASTRA development team of the subject common name of your certificates. The common name is typically the DNS name. We will authorize your servers/certificates to retrieve ASTRA data for your application.

    7. Send an email to astra-dev@cac.washington.edu with the following information

    Subject: New AstraWS Consumer
Body:
Application Name: Name of your consuming application.
Certificate Subject Common Name (CN): computer_name.u.washington.edu.
Contact Phone Number: NNN-NNN-NNNN

For diagnostic purposes, the ASTRA team can authorize access using username/password. If you feel that your certificate may be the reason you cannot connect, please contact the ASTRA dev team and request a temporary username/password.