This page contains links to more information and technical resources. It will be expanded as time passes, and stuff here may change significantly. The idea is to provide a starting point for people looking to implement an identity or service provider connected to SAFIRE.

Introduction to Federation

• The NSRC & GÉANT have produced an excellent series of videos giving a broad introductory overview of federation topics, which are available at https://learn.nsrc.org/FedIdM.

SAML2 Implementations

• Shibboleth (IdP & SP)
• SimpleSAMLphp
• ADFS 2.0
• Google Apps for Education
• Others?

Identity provider deployment

• IdP Installer - Federated identity Appliance developed by CANARIE (CA) /SWAMID (SE).
• Step-by-step IdP installation - written by Tuakiri (NZ), but many of the principles follow through.
• TestShib - Test service provider.
• SAMLtest.id - test your IdP & SP
• University multilateral federation solutions for Entra ID - Microsoft documentation on interporating Entra ID with R&E federations.

Service Provider deployment

• AARC Blueprint Architecture - a set of software building blocks that can be used to implement federated access management solutions for international research collaborations.
• Research & Scholarship entity category
• Wordpress
• Moodle

User Interface/Login pages/Discovery

• Seamless Access - the Seamless Access discovery service, building on the outcomes of RA21. (This is the recommended approach for people deploying new services.)
• Shibboleth embedded discovery service
• eduGAIN DSX embedded discovery [decommissioned]
• DiscoJuice - user-friendly, JavaScript discovery service. [decomissioned]

Best Practices for UX

• RA21: Resource Access for the 21st Century
• REFEDS Discovery Guide - best practices for integrating federation login into your web site.
• MDUI - metadata user interface extensions.

Security/Incident response

• Security Incident Response Trust Framework for Federated Identity (Sirtfi)

SAFIRE-specific stuff