Shibboleth is an Internet2 consortium project that enables universities to share resources and research across institutional boundaries. The Shibboleth open source software package works with Stanford’s other single sign-on Authentication and Authorization protocols to enable students, faculty, and staff to access resources at partner institutions without needing to create separate, local IDs and passwords for each one.
Any set of parties who use Shibboleth can create a trust relationship between their authentication systems. Service providers (websites that require authentication) can continue to allow access to users with local authenticated credential and also trust users with credentials from federated authentication services.
Stanford is a member of the InCommon federation, which has dozens of participating institutions. Many of our peer universities as well as academic research resources such as OCLC and Elsevier also belong to InCommon (see the full list). Members of these participating institutions can apply for Shibboleth access to and from Stanford. We also have our own local federation called FarmFed where we set up trust relationships with websites that are not members of InCommon.
- Application owners and service providers:
- Find information on Stanford’s adoption of SAML for single sign-on at SAML (Authentication).
- Learn about migrating from WebAuth to SAML/Shibboleth at WebAuth Announcement.
- Dive in and set up an application on Stanford’s Shibboleth presence at Installing and Configuring Shibboleth Service Providers at Stanford.
- Students, faculty, and staff wishing to add resources or institutions to those which Stanford belongs to:
- Find information and instructions at Shibboleth Federations.
Documentation for application owners, web developers and content managers, and third-party service providers: