Internet2

close
Use Internet2 SiteID

Already have an Internet2 SiteID?
Sign in here.

Internet2 SiteID

Your organization not listed? Create a local account to use Internet2 services.

Create SiteID

Shibboleth

overview
Shibboleth Single Sign-On and Federating Software is a standards based, open source software package for web single sign-on across or within organizational boundaries. It allows sites to make informed authorization decisions for individual access of protected online resources in a privacy-preserving manner.

Internet2 contributed significant resources to the development of Shibboleth over the years and now this software is owned and controlled by the international Shibboleth Consortium. We list it here for the convenience of our members, given that a large majority of InCommon participants use this software.

For more information about Shibboleth and the Shibboleth Consortium, please go to the Shibboleth website.

features
Shibboleth is among the world's most widely deployed federated identity solutions, connecting users to applications both within and between organizations. Every software component of the Shibboleth system is free and open source.

Shibboleth is an open-source project that provides single sign-on capabilities and allows sites to make informed authorization decisions for individual access is protected online resources in a privacy-preserving manner.

Shibboleth is owned by the Shibboleth Consortium. For an overview of the software, please go to http://shibboleth.net/about/basic.html.

fees
Shibboleth is developed as open source software and is released under the Apache Software License. More information about the individual components is available on the Shibboleth Consortium Products page.
participate

For more information on participation and resources, see their page at http://shibboleth.net/community/.

faq

What's Shibboleth?

Shibboleth is a standards based, open source software package for web single sign-on across or within organizational boundaries. It allows sites to make informed authorization decisions for individual access of protected online resources in a privacy-preserving manner.

The Shibboleth software implements widely used federated identity standards, principally the OASIS Security Assertion Markup Language (SAML), to provide a federated single sign-on and attribute exchange framework. A user authenticates with his or her organizational credentials, and the organization (or identity provider) passes the minimal identity information necessary to the service provider to enable an authorization decision. Shibboleth also provides extended privacy functionality allowing a user and their home site to control the attributes released to each application.

The Shibboleth project began as an Internet2 Middleware activity in 2000, and later that year the project connected with the work of the OASIS SAML Working Group. Shibboleth 1.0 was released in 2003, and was quickly adopted by research and education communities worldwide. With SAML 2.0 in 2005 and Shibboleth 2.0 the following year, the SAML standards grew to include all the multi-lateral, metadata driven approaches pioneered by Shibboleth.

Shibboleth is now owned and controlled by the international Shibboleth Consortium. It continues to be developed as open source software and is released under the Apache Software License. More information about the individual components is available on the Products page.

To learn more about Shibboleth, visit http://shibboleth.net/.