This Task delivers developments aimed at federations and campus identity providers, based on the existing federated identity and eduGAIN models and technologies.

It aims to make federated identity on a pan-European scale easier for federations and campus IdPs to adopt, more scalable to cope with significant growth of entities via eduGAIN, and more secure in complex operating environments.

Key objectives

The key objectives of Task 1 are:

T1.1 eduGAIN policy review

T1.2 eduGAIN metadata management and attribute release management

T1.3 Development of supporting services for campus identity providers

T1.4 eduGAIN incident management development

Deliverables and Milestones:

  Deliverable D9.1: Market Analysis for Supporting Services for Campus Identity Providers, M8

  Milestone M9.2: Assessment of DP Legislation Implications, M8, White Paper

  Milestone M9.4: SIRTFI Pilot Report, M20, Report

Minutes of periodic Task calls

Task1 Trello Board

Availability of people during the summer 2018 break

Relevant internal / collaborations  documents

Cloud-based IdP services Catalogue

Face To Face Meetings (notes, agenda, slides)

SWAMID REFEDS SIRTFI and REFEDS R&S Attribute Release Check 

eduGAIN attribute release check 

Measurement and Statistics wiki

Measurement & Statistics

Minutes of periodic task calls

Moving towards production: GEANT Software Management Tools

Useful Links and References



Final Products Presentations and Documentation

ProductGoalsExpected usersNotes on final status of the productReferences (URLs) and Presentations / Videos / DocumentsSubsequent related activity/task and persons involved in GN4-3Git Repository
Campus IdP PlatformEnable FedOps and IdP admin to spawn and manage their IdPs - Accessed as an eduGAIN SP. Hosted on Openstack or VMware.FedOps and HOs IdP admins

Use Case "Create IdP" implemented:

  • Request and approve new IdP via web client
  • Store configuration data in database
  • Convert configuration data and trigger Ansible
  • Deploy new IdM on existing VM

Demo Video: CampusIDP Platform DEMO (FULL Short Version).mp4

Documentation: Campus IdP Platform Architecture

  • Use Case 1: Create IdP
    • Enable deployment on different target environments
  • Use Case 2: Manage IdP 
    • Edit IdP configuration
    • Delete IdP
  • Use Case 3: Manage Federation
    • Lifecycle management of IdP (approve, remove)
    • Metadata management

Web Client:


Measurement and Statistics National and eduGAIN platformGather Fticks from IdPs belonging to national federatoins and eduGAIN, enabling national ID Federatoins to view and manage their forwarding to a central eduGAIN collector nodeFedOps and eduGAIN admins

Docker dpeloyment

of Campus IdP

Enable Home organization to deploy a simple, basic Shib IdP on DockerHOs IdP admins

Ansible toolkit for deployment of Shibboleth IdPEnable HOs and federatoin to install and configure IdP and related tools using Ansible.HO IdP admins and FedOps
  1. HOWTO Install an Ansible IdP on Localhost:
  2. HOWTO use Ansible Toolkit in a centralized way:

Ansible playbook and inventories needed to install and configure a Shibboleth IdP:


Ansible playbook and inventories needed to install and configure some monitoring tools:


Ansible playbook and inventories needed to create VMs upon OpenStack architecture:


SIRTFI email contacts verification toolDeploy a web based tool accessible as eduGAIN SP capable of getting security email contacts for IDPs and capable of sending verification email to admins to verify the effectiveness of the addresses and their responsiveness.

eduGAIN support