Single Sign On
Single Sign On
Shibboleth is a standards based, open source software package for web single sign-on across or within organizational boundaries. It allows sites to make informed authorization decisions for individual access of protected online resources in a privacy-preserving manner. Single sign-on (SSO) authenticates users by having them log in with one set of credentials across multiple softwares. WebAdMIT now has a Force SSO checkbox in the CAS, Organization, and Users edit pages where Liaison users can identify CASs, organizations, or users that must use SSO to access WebAdMIT.
Applicant View
Applicant view of single sign on will change based on the CAS they are accessing.
WebAdMIT
Force SSO can be enabled in WebAdMIT at the CAS-level, Organization-level, or individual WebAdMIT user-level.
- If you activate this for a CAS, then all organization and admissions users must use SSO.
- If you activate this for an organization, then all admissions users in that organization must use SSO.
- If you want to activate this for an Association, Advisor, or Institution user, then you must click the checkbox on the User edit page.
- If a user has access to multiple CASs or organizations, and at least one of their active accounts has the Force SSO checkbox selected, then they must log in to WebAdMIT using SSO, regardless of which CAS or organization they want to access.
If a user must use SSO, then when they try to log in to WebAdMIT or reset their password, they receive an alert message. Note that they will not be redirected to their SSO site. Using SSO ensures that if a user must access at least one of their WebAdMIT accounts through SSO, then they cannot access it in any other way.