Skip to content Skip to site navigation Skip to service navigation



FarmFed is Stanford's local trust federation and its primary function has been to provide WebAuth-based single sign-on functionality to both Stanford and off-campus service provider websites. FarmFed's members consist of identity providers (see below) and service providers.

How to Join FarmFed

Visit spdb portal and submit your metadata.

After the SP's metadata is installed on the IdP servers you will be able to configure your SP for FarmFed and start testing. If your site is running Shibboleth, please see the Installing and Configuring Shibboleth Service Providers page to see how to configure.

Non-Shibboleth sites like Google and Salesforce often need to be configured with a single sign-on URL and SSL certificate (see below). View an IdP's metadata to find the available SingleSignOnService profiles; the most common are and


If the SP requires personal identifying information for a logged in user, please see the Attribute Release Policy for information on how to request.

Metadata and SSL Certificates of FarmFed Identity Providers for Service Providers


  • EntityID:
  • Metadata: IdP-only metadata
  • SSL certificate: idp.crt
  • Authentication system: WebAuth


  • EntityID: (note: encryption on idp-uat is now SHA-256 only)
  • Metadata:  IdP-only metadata
  • SSL certificate: idp-uat.crt
  • Authentication system: WebAuth

Additional identity providers coming soon.

Last modified February 9, 2017