Versions Compared

Old Version 29

changes.mady.by.user Peter Brand

Saved on

compared with

New Version 30

changes.mady.by.user Peter Brand

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: only slighly tongue-in-cheek

Considerations for SAML Identity Providers for use with services registered with other Identity Federations via Interfederation arrangements (such as eduGAIN).

Info
iconfalse
titleIdentity Provider Best Practices

You will find that nothing here is specific to Interfederation participation, i.e. all IDPs in eduID.at should be configured like this.

Note
iconfalse

Another way to put this: All eduID.at IDPs should participate in interfederation. If you're not, You're Doing It Wrong.

Only by (also) participating in Interfederation (such as eduGAIN) you're able to support your academic constituency in providing them with secured access to the resources they need. E.g. E-research cannot happen without international collaboration and shared, properly managed access to scientific tools.

Metadata

All IDPs in eduID.at should always load SAML Metadata that also includes entities known via Interfederation agreements, such as eduGAIN. This metadata set alone is sufficient for all eduID.at Federation and Interfederation purposes, so can replace any previously used one:

...