UK Federation Operational Information
Federation Metadata
Download the signed metadata files for the UK Federation here:
- For Shibboleth V1.3 and V2.0:
You can download the certificate used to sign this file as ukfederation.pem for use with the siterefresh utility (described in SetupSP), or as ukfederation.jks for use with the metadatatool utility (described in SetupIdP).
However, as this certificate secures the entire UK Federation, you should not rely on it until you have confirmed the certificate's fingerprint with a member of the UK Federation Operations team. (SetupSP describes use of openssl to check the certificate fingerprint using ukfederation.pem. SetupIdP describes use of keytool to check the certificate fingerprint using ukfederation.jks.)
Testing new IdP deployments
The following test SP pages are for general use in testing new IdP deployments:
Please note that the second of these uses the filtered WAYF so that IdPs with visibility set to "No" do not appear in the drop-down list.
These display the user attributes received (and other information) in different forms.
Note: Do not attempt to gain access to any live service until you have verified, by the use of the test pages noted above, that your IdP is properly configured and handling attributes correctly.
Testing new SP deployments
The UK Federation does not operate a test IdP. If you do not have access to an IdP which can be used for testing your new SP, you can create test accounts at one of the open-access IdPs within the federation. Currently these are: ProtectNetwork and TypeKey Bridge
Attributes Used in Federation
See Attribute usage for details.
History
The SDSS development federation was the forerunner of the UK federation.