Service provider

Presentation of the University’s Service provider role

The University of Milan is a member of IDEM, the Italian Federation of Universities and Research Institutions for Authentication and Authorization, coordinated by the GARR Consortium.

The University acts as a Service provider (SP) in accordance with IDEM regulations, offering educational and research institutions a shared access management system for online resources. This system allows faculty, students and staff who possess login credentials from other universities or federated institutions — to use those same credentials to access web resources and services offered by the University.

Services

The services provided ensure appropriate safeguards and respect for privacy, in accordance with the University of Milan’s User Information and the GARR Consortium’s privacy policy.

Through this authentication tool, the University of Milan requests certain user information — referred to as “attributes” — from the Identity providers used for login. These attributes are necessary to deliver the requested service, they are limited to the strictly necessary data and are processed in accordance with legal regulations.

The set of required attributes includes:

  • attribute: sn, corresponding to surname
    requirement: mandatory
    example: ROSSI
  • attribute: givenName, corresponding to first name
    requirement: mandatory
    example: MARIO
  • attribute: mail, corresponding to e-mail address
    requirement: mandatory
    example: [email protected]
  • attribute: eduPersonPrincipalName (ePPN), corresponding to the user’s persistent unique identifier within the university or institution
    requirement: mandatory
    example: [email protected]

During the access process, a list of the information that the Identity provider will transmit to this Service provider may be displayed. The Service provider may use these attributes by means of encrypted and signed cookies, for technical purposes related to service delivery or user profiling.