Versions Compared

Old Version 61

changes.mady.by.user trscavo@internet2.edu

Saved on

compared with

New Version 62

changes.mady.by.user trscavo@internet2.edu

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

For more information about configuring an IdP for R&S, consult the R&S Attribute Bundle Config topic in the wiki.

Frequently Asked Questions

What do you mean by “multivalued R&S entity attribute?”

Please visit the R&S Entity Metadata wiki page. There you will find an example of a multivalued R&S entity attribute for R&S SPs.

Why do all R&S SPs have a multivalued R&S entity attribute in metadata?

Every R&S SP has a multivalued R&S entity attribute in metadata so that R&S IdPs can migrate to global R&S at any time without loss of interoperability.

Under what conditions will an IdP receive a multivalued R&S entity attribute in metadata?

Under no circumstances will an IdP receive a multivalued R&S entity attribute. An IdP receives the refeds.org R&S tag if and only if it releases attributes to all R&S SPs globally. If, OTOH, an IdP releases attributes to R&S SPs registered by InCommon only, it will receive the incommon.org R&S tag.

Be aware, however, that the legacy incommon.org R&S tag will not be exported outside the InCommon Federation. If and when your IdP metadata is exported to eduGAIN, it will not contain an R&S entity attribute at all. From a global perspective, you do not support R&S unless you recognize the refeds.org R&S entity attribute value.

When should I migrate to global R&S, that is, when should I configure my IdP to release attributes to all R&S SPs globally?

You can reconfigure your IdP whenever you’re ready. Today there are no global R&S SPs in InCommon metadata but soon there will be. If you are certain you want to support global R&S, then by all means reconfigure your IdP now.

When I change my attribute release policy to recognize the refeds.org R&S tag, will my IdP start releasing attributes to SPs outside the InCommon Federation?

At this moment, all the entities in the InCommon metadata aggregate are registered by InCommon, so the only R&S SPs in the aggregate are InCommon R&S SPs. Within the next few months, however, InCommon will begin importing R&S SPs from other federations via eduGAIN. When that happens, if your IdP recognizes the refeds.org R&S entity attribute value, it will automatically release attributes to all R&S SPs, including R&S SPs from other federations. That’s precisely what it means to support global R&S.

I don’t want to release attributes to R&S SPs from other federations. How do I prevent that from happening?

If you don’t want to release attributes to R&S SPs from other federations, don’t change your attribute release policy to recognize the refeds.org R&S entity attribute value. Simply continue to recognize the legacy incommon.org R&S entity attribute value as you do now, or better yet, reconfigure your IdP to release attributes to R&S SPs registered by InCommon without relying on the legacy incommon.org R&S tag.

I don’t want to release attributes to global R&S SPs, so why do I have to touch my IdP config at all?

You are not required to touch your IdP config, at least not at this time. The actions documented here are RECOMMENDED but NOT REQUIRED.

That said, we encourage you to reconfigure your IdP as documented. If you do, and we decide to remove the legacy incommon.org R&S tag from SP metadata at some later time, you’ll be all set. In any case, we won’t do anything without giving everyone ample lead time.

Why is it necessary to remove the legacy incommon.org R&S tag from SP metadata?

The Research & Scholarship category is now an international standard. The legacy incommon.org R&S entity attribute value is only relevant inside the InCommon Federation. In order to interoperate with international partners, the legacy incommon.org R&S tag must be replaced with the new refeds.org R&S entity attribute value, which is the only R&S entity attribute value recognized by R&E federations worldwide.

When will the legacy incommon.org R&S tag be removed from SP metadata?

We have no definite plans to remove the legacy incommon.org R&S tag from SP metadata. We will monitor the progress of the Research & Scholarship category in the InCommon Federation and make a determination at a later time. In the meantime, it is RECOMMENDED that all IdPs remove all references to the legacy incommon.org R&S tag from their configurations.

When will the legacy incommon.org R&S tag be removed from IdP metadata?

As long as there are IdPs that want to restrict attribute release to R&S SPs registered by InCommon, the legacy incommon.org R&S tag will remain in IdP metadata.