Metadata

ACOnet publishes several SAML Metadata documents for differing uses, some of which are documented below.

Security notice

All use of SAML Metadata published by ACOnet requires verification of the cryptographic signature (XMLDsig) on that metadata against the published Metadata Signing Key. Trust in any information contained in SAML Metadata published by ACOnet should only be derived from a valid signature with that key, not e.g. based on the URL the metadata is downloaded from.

Service Providers only providing services to ACOnet participants (i.e,, services that do not have users outside eduID.at members) can use this limited Metadata document, which only contains entities registered with ACOnet. I.e., Identity Providers owned by formal ACOnet Federation members who are bound by the ACOnet Identity Federation Policy:

Entities registered with ACOnet

http://eduid.at/md/aconet-registered.xml

All other Federation members will want to make use of the Interfederation-enabled Metadata document, which contains all eduID.at members as well as any SAML entities known via Interfederation agreements, such as eduGAIN. Those interfederated entities are bound by the policies of their respective Registrars or Home Federations.

Entities registered with ACOnet plus Interfederation Entities

http://eduid.at/md/aconet-interfed.xml

Federation members who should use this Metadata document include:

Service Providers registered with ACOnet also offering their services via Interfederation, as well as
all Identity Providers within ACOnet, including but not limited to those participating in Interfederation.

ACOnet Identity Federation

Content

Page tree

Links

Help

Intranet Tools