Shibboleth allows users to securely send trusted information about themselves to remote resources. This information may then be used for authentication, authorization, content personalization, and enabling single sign-on across a broad range of services from many different providers.

The Shibboleth V2 IdP and SP software have reached End of Life and are no longer supported. This documentation is available for historical purposes only. See the IDP v4 and SP v3 wiki spaces for current documentation on the supported versions.

The Identity Provider(IdP) and Service Provider V2 products are now unsupported (as is the Centralized Discovery Service product).

The V3 Identity Provider and Service Provider software have their own documentation spaces here and here.

All software, including archived releases, is available from https://shibboleth.net/downloads/ and each release is accompanied by a detached PGP signature using one of the keys listed in the project's KEYS file.  High-level information to get started with SAML and Shibboleth can be found in the Concepts wiki space.

All our software is licensed under the Apache 2.0 open source software license.

All deployers should make sure to subscribe to to the announce mailing list to be sure of seeing important security announcements.