Login into external application and services (Shibboleth) ****************************************************************************************** * ****************************************************************************************** This service enables a so-called SSO (Single Sign-On) for web applications and federative (login to external services using the account of one’s home institution). ****************************************************************************************** * Shibboleth at the Charles University ****************************************************************************************** At the Charles University, Shibboleth is used for the authentication of users. Thanks to S Charles University teachers and students can, with one single account, use applications ru Charles University and by external providers. Shibboleth also enables students and teacher universities to work with Charles University’s applications if they log in via their home The Charles University is member of eduID.cz [ URL "http://www.eduid.cz/en/index"] , a Cze federation of identities administered by CESNET. Shibboleth is a free open-source middleware for federative web single sign-on based on ope especially the SAML. Shibboleth is developed and supported by the Internet2 consortium. ****************************************************************************************** * Identity provider ****************************************************************************************** Identity Provider (IdP) is a component which enables Charles University teachers and stude identity with the service providers. IdP is operated as part of the Central Authentication Service of the Charles University [ ldap.cuni.cz/"] and it is registered in the eduID.cz [ URL "http://www.eduid.cz/en/index"] federations [ URL "https://www.eduid.cz/en/i/cztestfed/index"] . ****************************************************************************************** * Service providers ****************************************************************************************** Service providers (SP) are applications which enable users use resources after authenticat of identity federation. At the Charles University, service providers are implemented in the following systems: EZp elektronických zdrojů, MetaLib, Aleph, DigiTool, Document Globe, DSpace, Moodle, and Mefan abovementioned service providers are part of the eduID.cz federation. The SFX system is configured for Shibboleth environment. It uses WAYFless links. Within the eduID.cz, the Charles University uses authentication via Shibboleth for all acc of EIZ: EBSCO, Thomson Reuters, Ovid, Cambridge Journals, ... ****************************************************************************************** * Notification of existing limitations ****************************************************************************************** Identity provider Internet Explorer 6 browser may experience problems with the identity provider. Logout In order to log out of the Shibboleth context, one closes the browser window. Actual logou the level of applications – SP. Timeout for expiry of a Shibboleth session is at the Charles University set at the standar ****************************************************************************************** * Contact ****************************************************************************************** Email: casadmin(zavinac)cuni.cz [ MAIL "casadmin(zavinac)cuni.cz"] Conference: cas(zavinac)cuni.cz [ MAIL "cas(zavinac)cuni.cz"] Telephone: (+420) 224 491 809