Towson University Shibboleth Identity Provider
This service allows external service providers (e.g., those hosting a web application outside of the Towson University network) to rely on Towson University to authenticate faculty, staff, students and affiliates. Towson University NetID holders can use their university NetID and a familiar university login web page to access the external service. Towson relies on the "Shibboleth Identity Provider" software to provide this service.
If you have come to this page in order to log into a specific service, you should instead visit that service's web page to start the login process. If you are a vendor or Towson University department looking to configure university NetID authentication for an external service (using TU's Shibboleth Identity Provider), the documentation below provides instructions for both vendors and TU staff.
Towson University has implemented a Shibboleth Identity Provider to provide external service providers (those hosting services outside of the Towson University network) a secure way for faculty, staff and students to authenticate to the service using their university NetID. In its simplest form, this service provides a Towson University login web page for non-Towson University web sites. Browser cookies must be enabled for this service.
The Shibboleth software allows identity providers (those who "own" the accounts) and service providers (the web site external to the university) to interoperate. It is standards-based and used by a growing number of universities. The Shibboleth software is described in detail at http://shibboleth.internet2.edu/about.html.
Individual service providers must register with the Office of Technology Services so that they can properly communicate with the university's identity provider; the request process is described below.
A university department who is working with a vendor to provide an externally-hosted web service to faculty, staff or students may benefit from this service. The university department/contact person must confirm with the vendor that the vendor's service will support a "Shibboleth Identity Provider." If the vendor supports Shibboleth, then the department can submit a request to OTS via the OTS Help Center to have a new service provider configured for the university's Shibboleth service. The following information should be provided in the request:
The request will be referred to the appropriate workgroup in OTS, who will follow up with the university contact for additional information and/or to set up a conference call with the vendor. The duration and complexity of the integration is provider-specific; an integration could take a few business days to many weeks.
The vendor should be referred to this web page for additional details (see FAQ section below), including specific details about Towson's implementation of the Shibboleth identity provider and limitations that might affect the vendor's service.
Below are some frequently asked questions, for both vendors and university staff:
|Notice: Unauthorized access to this computer is in violation of Article 27 Sections 45A and 146 of the Annotated Code of Maryland. Towson University may monitor use of this system as permitted by state and federal law, including the Electronic Communications Privacy Act, 18 U.S.C. sections 2510 et seq. Unauthorized or improper use of this system may result in administrative disciplinary action and civil and criminal penalties. By continuing to use this system you indicate your awareness of and consent to these terms and conditions of use.|
|Last Updated: December 20, 2010|