Go to the U of M home page

Friday, March 23, 2012

Shibboleth implementation for Pillar applications on March 25

On Sunday, March 25, all web applications under the Pillar infrastructure (e.g., Web Registration, Student Account, FA Status, Parent/Guest) will transition to the new Shibboleth login/sign-out protocol from the Central Authentication Hub (CAH). There is no extended downtime that accompanies this work.There are two changes users will notice:

  • A new look and feel to authentication pages. Many users will have already seen this change in other applications, so the look will be familiar.

  • When users "sign-out" of a Pillar application, they will be removed from Pillar, but not the larger the U authentication. For maximum security, the browser should always be closed after signing out.

    When authentication services were provided by the CAH, when a user clicked on the "Sign-out" button, all of the user's security credentials would be cleared and the user would be removed completely from University services. Under the new Shibboleth protocol, this is no longer an option. Security is by "Service provider". Pillar is one of a number of service providers. For example, if a student signs out of Registration and in the same browser window navigates to Gmail, they would not need to login again. Gmail is a different service provider.



No comments:

Post a Comment