Shibboleth

Rationale

UF authentication systems must support the most prevalent Web servers on campus, Apache, and IIS for Windows and Linux. The university needs to enable its departments and units to consume enterprise attributes for authorization of access in an efficient, scalable and secure manner. Shibboleth has been identified as an appropriate system for addressing these needs. By integrating Shibboleth with existing credential and attribute stores, we are able to meet the challenges of Web service authentication and authorization. Shibboleth users should be familiar with Identity Management Policies and the related standards and documents.

Goals

  • Implement Shibboleth 2.3 for single sign on and group-based authorization. Eliminate the practice of local web pages accepting GatorLink credentials
  • Provide support to departments for their use of Shibboleth
  • Refit UF web based applications (Services Providers) to use Shibboleth. There are currently 550 service providers
  • Use Shibboleth for federated identity management for non-UF service providers
  • Use Shibboleth for federated identity management for non-UF identity providers to access UF provided services

About Shibboleth

  • Shibboleth¬†– a project of the Internet2 Middleware Initiative
  • Shibboleth Demo – Brief video demo of Shibboleth features

Project Sponsor

  • Elias G. Eldayrie

Contacts

Mail Listserv’s