Federated login: Różnice pomiędzy wersjami

Z Uniwersyteckie Centrum Informatyczne

(Utworzono nową stronę "Through the NCU Central Login Point, NCU employees and students can also access external services using the so-called '''' 'Federated Identity Management'''''. '''Be su...")
 
Linia 3: Linia 3:
 
'''Be sure to read: [[Recommendations for secure login]]'''
 
'''Be sure to read: [[Recommendations for secure login]]'''
  
In practice, federated login comes down to the fact that a user who wants to use the service indicates the appropriate home institution on the service page, and then is redirected to this institution's login page. International services, often require first indicating ''''' Federation '''''- in the case of Poland it will be the '''''Polish Identity Federation - PIONIER.Id ''''', In many cases (as for EBSCOhost ), it is also possible to construct a direct link that will first perform the login and then automatically return to the service page, so the user will access federated login without having to choose the home institution.
+
In practice, federated login comes down to the fact that a user who wants to use the service indicates the appropriate home institution on the service page, and then is redirected to this institution's login page. International services, often require first indicating ''''' Federation '''''- in the case of Poland it will be the '''''Polish Identity Federation - PIONIER.Id '''''. In many cases (as for EBSCOhost ), it is also possible to construct a direct link that will first perform the login and then automatically return to the service page, so the user will access federated login without having to choose the home institution.
  
 
After logging in to the Central Login Point, the user are asked for confirmation of consent to send certain information to the service provider, if they agres, the connection will be successful. By default, consent is given once, but one can choose to remember the positive decision for the service provider.
 
After logging in to the Central Login Point, the user are asked for confirmation of consent to send certain information to the service provider, if they agres, the connection will be successful. By default, consent is given once, but one can choose to remember the positive decision for the service provider.

Wersja z 12:09, 19 maj 2020

Through the NCU Central Login Point, NCU employees and students can also access external services using the so-called ' 'Federated Identity Management.

Be sure to read: Recommendations for secure login

In practice, federated login comes down to the fact that a user who wants to use the service indicates the appropriate home institution on the service page, and then is redirected to this institution's login page. International services, often require first indicating Federation - in the case of Poland it will be the Polish Identity Federation - PIONIER.Id . In many cases (as for EBSCOhost ), it is also possible to construct a direct link that will first perform the login and then automatically return to the service page, so the user will access federated login without having to choose the home institution.

After logging in to the Central Login Point, the user are asked for confirmation of consent to send certain information to the service provider, if they agres, the connection will be successful. By default, consent is given once, but one can choose to remember the positive decision for the service provider.

The establishment of the Polish Federation was an initiative of UCI and was implemented as part of the MAN-HA project. The operator of the PIONIER.Id Federation is Poznań Supercomputing and Networking Center, and the whole work is coordinated by UCI NCU.

The user of external authorized services should read the Regulations of these services and the Security Rules in accessing these services

Regulations for the use of external network services available through the Central Login Point

Recommendations for secure login