Skip to content

Shibboleth

Overview

Shibboleth is an open-source federated identity solution primarily used in academic and research communities. For conceptual understanding of how Shibboleth works, see Shibboleth Overview.

For server administration and infrastructure details, see Shibboleth Server.

The Shibboleth Service Provider supports WAYFless links, which allow users to access resources without going through the Discovery Service ("Where Are You From" page). This is particularly useful for direct integrations with known Identity Providers (IdPs).

This tool helps create the correct WAYFless links by allowing you to input the entityID, automatically encoding it together with a target as needed.


  1. 
                
    
            

    







Known Issue: The tool only allows entity IDs starting with "https://", but some IdPs use URNs. In such cases, you need to manually construct the link, but do not forget the target parameter (does not seem to work without it).


Federation Metadata


Our Shibboleth Service Provider is configured to work with multiple federations:


    

  • DFN-AAI (German Research Network Authentication and Authorization Infrastructure)
    • 

  • eduGAIN (Global interfederation service)
    • 

  • UK Federation (UK Access Management Federation)
    • 



For detailed information about the metadata files and their configuration, see Shibboleth Server - Configuration Files.


Testing


To test Shibboleth authentication, see Test Shibboleth Login.






  

    
    

      Last updated: March 24, 2026 at 10:39
    

    
    
    
    

      By: Axel Tetzlaff