Módosítások

Hungarian Research and Educational Federation ('''HREF''') is a SAML2-based Identity Federation of Hungarian higher education and research institutions, public collections and other content providers. For the end-users, the federation aims to be transparent, therefore the login procedure is communicated as '''''eduID login'''''.

== Service levels of Federation Operator Services How to join ===== Metadata distribution Production federation ===Metadata is considered In order to be ''available''join the production federation as a Partner, if you need to send the federation following information:* SP metadata file is URL (HTTPS preferred)* Name of the SP* Brief description of the service* Service URL* Privacy policy URL* Administrative and technical contact names and mail addresses (non-personal preferred)* Required and optional attributes* Logo URL (optional)* Helpdesk URL (optional) This information should be sent to the Federation Operator (see [[#Contacts|above]]) in email. Two copies of the signed Service Agreement (available and can at http://eduid.hu/documents) should be validated sent by using traditional post, one copy will be returned after counter-signing. After the signing certificate of application has been reviewed by the Federation Operator. Metadata , it is considered forwarded to be ''current'the Members'Board. It usually takes 3-5 working days for the Board to accept the application, when it after which the entity metadata is available and be added to the file is generated not earlier than ''8 hours''production federation metadata.

Federation Operator provides Metadata which is '''available in 99.9%''' and '''current in 99%''' of time within any 12 months time frame.=== Resource Registry Testing metadata ===Resource Registry allows administration of the entities of the federation. (Only administrators of Members and the Federation Operators are allowed to use this service). It is considered recommended that a new SP should be registered to be ''available'' if administrator login is possible (given that the Identity Provider testing federation at first, which is working properly)much easier and a fully online process.

Federation Operator provides Resource Registry which The following information is available in '''98%''' of time within any 12 months time frame.necessary to enter into the testing metadata:=== Discovery Service ===* SP metadata URL (HTTPS preferred)Discovery Service is a web form which displays the available Identity Providers * Name of the federation. It uses the [http://docs.oasisSP* Administrative and technical contact names and mail addresses (non-open.org/security/saml/Post2.0/sstc-saml-idp-discovery-cs-01.pdf SAML2 Discovery Profile]. It is considered to be available if it is possible to select Identity Providers according to the named profile (given that the Service Provider is working properlypersonal preferred).* Required and optional attributes

Federation Operator provides Discovery Service which is available You can ask for test accounts in '''99.9%''' of time within any 12 months time frame.=== Virtual Home Organization ===our Virtual Home Organization is an Identity Provider for registering individuals without a Home Organisation. It is considered During testing, you might want to be available if it use the production federation metadata, because the VHO is able to work as an Identity Provider present in terms of the [http://docs.oasis-open.org/security/saml/v2.0/saml-profiles-2.0-osboth metadata files.pdf SAML2 SSO Profile]

Federation Operator provides Virtual Home Organization which You do not need to re-register your entity to proceed to the production federation. If we have all the necessary information, the starting of the joining process is available in '''99%''' of time within any 12 months time frameat your discretion.[[Kategória: AAI]][[Kategória: eduid]][[Kategória: english]]