Uoft Shibboleth

A SAML Shibboleth provider for Uoft

Links

• https://sites.utoronto.ca/security/projects/shibboleth.htm
• https://uthrprod.service-now.com/sp?id=kb_article_view&sysparm_article=KB0015102
• https://uthrprod.service-now.com/sp?id=kb_article_view&sysparm_article=KB0015104
• https://web.archive.org/web/20190729093148/https://sites.utoronto.ca/security/projects/shibboleth.htm

IdP Federations

• UTORAuth
• Canada Access Federation
• live@edu

SAML Attributes

Friendly Name(s)	SAML2 Name	example value
eppn, eduPersonPrincipalName	urn:oid:1.3.6.1.4.1.5923.1.1.1.6	xxxxxxxx@utoronto.ca
mail, email	urn:oid:0.9.2342.19200300.100.1.3	xxx.yyy@utoronto.ca
sn, surname	urn:oid:2.5.4.4	Smith
givenName	urn:oid:2.5.4.42	Mark
UTORid	urn:oid:1.3.6.1.4.1.15465.3.1.8	xxxxxxxx
cn, commonName	urn:oid:2.5.4.3	Mark Smith
eduPersonAffiliation	urn:oid:1.3.6.1.4.1.5923.1.1.1.1	staff
primaryCampus	urn:oid:1.3.6.1.4.1.15465.3.1.407	STG
primaryDivision	urn:oid:1.3.6.1.4.1.15465.3.1.237	Ofc of the Chief Information Officer
eduPersonScopedAffiliation	urn:oid:1.3.6.1.4.1.5923.1.1.1.9	staff@utoronto.ca
empnum	urn:oid:1.3.6.1.4.1.15465.3.1.6	0001234567
personid	urn:oid:1.3.6.1.4.1.15465.3.1.5	0123456789
displayName	urn:oid:2.16.840.1.113730.3.1.241	Mark Smith
UTid	urn:oid:1.3.6.1.4.1.15465.3.1.1	1234567890
staffdept	urn:oid:1.3.6.1.4.1.15465.3.1.98	Information Security
isMemberOf	urn:oid:1.3.6.1.4.1.5923.1.5.1.1	cn=viewer,ou=can,ou=isea,ou=apps,ou=grouper,dc=able,dc=utoronto,dc=ca