Effective federation depends on IdPs that are both interoperable and trustworthy. To this end, an IdP deployed in the InCommon Federation is expected to satisfy certain requirements. Some of these requirements are operational while other requirements pertain to the IdP's entity descriptor in metadata.
A trustworthy IdP is the basic building block of the InCommon Federation.
Maintain positive control of your private keys at all times. Most importantly, safeguard the IdP signing key, which protects all Federation participants from the disastrous consequences of a key compromise. |
By definition, an interoperable IdP strives to provide an overall positive federated user experience.
SingleSignOnService
endpoint that supports the HTTP-Redirect bindingIf your IdP is not discoverable, you should self-assert membership in the Hide From Discovery Category. |
Support the Research & Scholarship Category of services now! |