Shibboleth Goals

The goals of the Shibboleth software are:

• Allow an organization use their existing user authentication mechanism to access web-based resources even if the resource is not operated by the orgnization. This has the benefits that:

  • A user only needs their "normal" log on credentials, not one per resource.

  • Access resources do not need to manage user credentials.

• Allow the user's information maintained by their organization to be provided to the resource. This has the benefits that:

  • When a user updates information with their organization all resources receives this new information when the user visits them.

  • Resources do not need to store and maintain data known by the user's organization.

• Allow the user, or their organization, to control the release of the user's information. This has the benefits that:

  • The user, or their organization, is in control of what information gets released.

  • Resources maintainers do not need to worry about receiving and protecting data they do not require.

Shibboleth Requirements

Service Provider System Requirements

Identity Provider System Requirements