Versions Compared

Old Version 47

changes.mady.by.user Peter Brand

Saved on

compared with

New Version 48

changes.mady.by.user Peter Brand

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: add list of IDP participating in eduGAIN

Considerations for eduID.at SAML Identity Providers for use with services registered with other Identity Federations via Interfederation arrangements (such as eduGAIN).

Info
iconfalse
titleIdentity Provider Best Practices

You will find that nothing here is specific to Interfederation participation, i.e. all IDPs in eduID.at should be configured like this.


Info
iconfalse
titleeduID.at Identity Providers also participating in eduGAIN

(All eduID.at IDPs should participate in eduGAIN.)

https://eduid.at/entities/idp/edugain

Rationale

Only by (also) participating in Interfederation will you be able to support your academic constituency in providing them with secured access to the resources they need. For example E-researchResearch or Student Mobility cannot happen without international collaboration and shared, properly managed access to scientific tools or administrative applications. Cf. the FIM4R (Federated Identity Management for Research Collaborations) paper.

...

Adjust the IDP configuration to lookup and/or generate any missing attributes. You'll find copy/paste-able examples for all of those in our IDP 3 Attribute resolution documentation.

false
Note
icon

Every eduID.at-registered IDP should be able to produce at least the following attributes:

...

Extend your existing IDP attribute release configuration to make use of Service Categories, to enable automated, scalable and controlled attribute release.

false
Info
icon

The use of the provided Service Categories to automate attribute release as much as possible is recommended for all eduID.at IDPs, especially those also participating in Interfederation.

...