{"id":7001,"date":"2018-06-11T20:30:32","date_gmt":"2018-06-11T20:30:32","guid":{"rendered":"https:\/\/www.reclaimhosting.com\/?page_id=7001"},"modified":"2026-03-11T17:04:17","modified_gmt":"2026-03-11T21:04:17","slug":"sso-integration","status":"publish","type":"page","link":"https:\/\/www.reclaimhosting.com\/contracts\/sso-integration\/","title":{"rendered":"Single Sign-On Integration"},"content":{"rendered":"\t\t<div data-elementor-type=\"wp-post\" data-elementor-id=\"7001\" class=\"elementor elementor-7001\" data-elementor-post-type=\"page\">\n\t\t\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-1c00d744 elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"1c00d744\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-6937d714\" data-id=\"6937d714\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-730d42ae elementor-widget elementor-widget-spacer\" data-id=\"730d42ae\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<section class=\"elementor-section elementor-inner-section elementor-element elementor-element-23e415d1 elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"23e415d1\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-wider\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-50 elementor-inner-column elementor-element elementor-element-5fc106c4\" data-id=\"5fc106c4\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-358b2893 elementor-widget elementor-widget-text-editor\" data-id=\"358b2893\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p><a href=\"https:\/\/www.reclaimhosting.com\/contracts\/\"><span style=\"text-decoration: underline;\"><em>\u2190 Back to\u00a0Contracts Quick Links<\/em><\/span><\/a><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-697edf7a elementor-align-center elementor-widget elementor-widget-button\" data-id=\"697edf7a\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"button.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<div class=\"elementor-button-wrapper\">\n\t\t\t\t\t<a class=\"elementor-button elementor-button-link elementor-size-sm\" href=\"https:\/\/drive.google.com\/file\/d\/11tRiNbah9WvoDx5j3MPCPgY4wQDT9rK4\/view?usp=sharing\">\n\t\t\t\t\t\t<span class=\"elementor-button-content-wrapper\">\n\t\t\t\t\t\t\t\t\t<span class=\"elementor-button-text\">Download .PDF Version of SSO Intergation<\/span>\n\t\t\t\t\t<\/span>\n\t\t\t\t\t<\/a>\n\t\t\t\t<\/div>\n\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-425a4d83 elementor-widget-divider--view-line elementor-widget elementor-widget-divider\" data-id=\"425a4d83\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"divider.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-divider\">\n\t\t\t<span class=\"elementor-divider-separator\">\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-16deb3df elementor-align-center elementor-widget elementor-widget-button\" data-id=\"16deb3df\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"button.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<div class=\"elementor-button-wrapper\">\n\t\t\t\t\t<a class=\"elementor-button elementor-button-link elementor-size-sm\" href=\"https:\/\/www.reclaimhosting.com\/contracts\/incident-response-plan\">\n\t\t\t\t\t\t<span class=\"elementor-button-content-wrapper\">\n\t\t\t\t\t\t\t\t\t<span class=\"elementor-button-text\">Incident Response Plan<\/span>\n\t\t\t\t\t<\/span>\n\t\t\t\t\t<\/a>\n\t\t\t\t<\/div>\n\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-7a837bbc elementor-align-center elementor-widget elementor-widget-button\" data-id=\"7a837bbc\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"button.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<div class=\"elementor-button-wrapper\">\n\t\t\t\t\t<a class=\"elementor-button elementor-button-link elementor-size-sm\" href=\"https:\/\/www.reclaimhosting.com\/contracts\/standard-sla\/\">\n\t\t\t\t\t\t<span class=\"elementor-button-content-wrapper\">\n\t\t\t\t\t\t\t\t\t<span class=\"elementor-button-text\">Standard SLA<\/span>\n\t\t\t\t\t<\/span>\n\t\t\t\t\t<\/a>\n\t\t\t\t<\/div>\n\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-79f5eb0 elementor-align-center elementor-widget elementor-widget-button\" data-id=\"79f5eb0\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"button.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<div class=\"elementor-button-wrapper\">\n\t\t\t\t\t<a class=\"elementor-button elementor-button-link elementor-size-sm\" href=\"https:\/\/www.reclaimhosting.com\/contracts\/data-processing-agreement\/\">\n\t\t\t\t\t\t<span class=\"elementor-button-content-wrapper\">\n\t\t\t\t\t\t\t\t\t<span class=\"elementor-button-text\">Data Processing Agreement<\/span>\n\t\t\t\t\t<\/span>\n\t\t\t\t\t<\/a>\n\t\t\t\t<\/div>\n\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t<div class=\"elementor-column elementor-col-50 elementor-inner-column elementor-element elementor-element-4ea00b9e\" data-id=\"4ea00b9e\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-105b4a1f elementor-widget elementor-widget-heading\" data-id=\"105b4a1f\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h1 class=\"elementor-heading-title elementor-size-default\">Single Sign-On Integration<\/h1>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-3348729a elementor-widget elementor-widget-text-editor\" data-id=\"3348729a\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<h2 style=\"text-align: center;\"><strong><br \/><span style=\"color: #000000;\">Integrating Campus Single Sign-On with Reclaim Hosting<\/span><\/strong><\/h2><h3><strong>Contents<\/strong><\/h3><ul><li><span style=\"font-weight: 400;\">Background Information<\/span><\/li><li><span style=\"font-weight: 400;\">Supported SSO Methods<\/span><\/li><li><span style=\"font-weight: 400;\">Overall Process and Responsibilities<\/span><\/li><li><span style=\"font-weight: 400;\">Technical Requirements<\/span><\/li><li><span style=\"font-weight: 400;\">Functional Notes<\/span><\/li><li><span style=\"font-weight: 400;\">Attribute Release<\/span><\/li><li>Contact Information<\/li><\/ul><h3><strong>Background Information<\/strong><\/h3><p><span style=\"font-weight: 400;\">Reclaim Hosting (RH) provides support for centralized NetID\/password authentication and single sign-on (SSO) with the Domain of One\u2019s Own environment. The Domain of One\u2019s Own environment is characterized by a dedicated virtual server for the institution with Apache modules and\/or PHP scripts to support the preferred authentication method (Shibboleth, CAS, LDAP).<\/span><\/p><h3><strong>Supported SSO Methods<\/strong><\/h3><h4 style=\"padding-left: 30px;\">Shibboleth<\/h4><p style=\"padding-left: 30px;\"><span style=\"font-weight: 400;\">Authentication via Shibboleth is available with the Domain of One\u2019s Own server acting as an SP (Service Provider) application. Reclaim Hosting is also a member of the InCommon Federation and can submit metadata for your Domain of One\u2019s Own environment for inclusion.<\/span><\/p><h4 style=\"padding-left: 30px;\">CAS (Central Authentication Service)<\/h4><p style=\"padding-left: 30px;\"><span style=\"font-weight: 400;\">CAS authentication is supported via the phpCAS framework. Institutions wishing to integrate with CAS will need to whitelist the URL to their Domain of One\u2019s Own instance. Note: Attribute release via CAS must be supported or attributes will need to be provided via a separate LDAP connection)<\/span><\/p><h4 style=\"padding-left: 30px;\">LDAP\/Active Directory<\/h4><p style=\"padding-left: 30px;\"><span style=\"font-weight: 400;\">Reclaim Hosting can integrate via a standard LDAP connection using either a dedicated bind account or anonymous access depending on the policies of the institution.<\/span><\/p><h3><strong>Overall Process and Responsibilities<\/strong><\/h3><p><span style=\"font-weight: 400;\">The overall process of integrating your campus SSO environment with Reclaim Hosting is as follows:<\/span><\/p><ol id=\"nestedList\"><li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Institution defines the preferred SSO method.<\/span><\/li><li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Technical coordination call (as needed) to review integration details. <\/span><\/li><li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Technical implementation of SSO<\/span><\/li><\/ol><ul><li><span style=\"font-weight: 400;\">Shibboleth &#8211; Exchange of necessary SAML metadata describing SP and IdP; Configure SP and IdP environments; test functionality.<\/span><\/li><li><span style=\"font-weight: 400;\">CAS &#8211; Whitelist environment URL; test functionality<\/span><\/li><li><span style=\"font-weight: 400;\">LDAP &#8211; Institution provides bind account for LDAP access; Configuration of environment; test functionality.<\/span><\/li><\/ul><p><span style=\"font-weight: 400;\">While each SSO integration is unique the institution should plan on a period of development and testing that can last between 1-4 weeks from information gathering stage up until final testing and deployment.<\/span><\/p><p><span style=\"font-weight: 400;\">The institution is responsible for configuring the IdP\/CAS\/LDAP server adding all necessary metadata and the release of requested attributes to the service provider. Reclaim Hosting maintains responsibility of configuration of the virtual server environment for interfacing with the institution\u2019s SSO environment.\u00a0<\/span><\/p><h3><strong>Technical Requirements<\/strong><\/h3><h4><strong>Shibboleth<\/strong><\/h4><ul><li>IdP entityID<\/li><li><span style=\"font-weight: 400;\">IdP Metadata<\/span><\/li><\/ul><p><span style=\"font-weight: 400;\">*Note: If utilizing InCommon this is provided automatically to Reclaim Hosting<\/span><\/p><h4><strong>CAS<\/strong><\/h4><ul><li>CAS Server URL and Port<\/li><\/ul><h4><strong>LDAP<\/strong><\/h4><ul><li>Domain Controller(s)<\/li><li><span style=\"font-weight: 400;\">Port<\/span><\/li><li><span style=\"font-weight: 400;\">Base DN<\/span><\/li><li><span style=\"font-weight: 400;\">Account Suffix<\/span><\/li><li><span style=\"font-weight: 400;\">Bind Account (optional)<\/span><\/li><li><span style=\"font-weight: 400;\">Authorization Group (optional)<\/span><\/li><\/ul><h3><strong>Functional Notes<\/strong><\/h3><p><span style=\"font-weight: 400;\">A test account with limited access to authenticate with the service provider application is optional but highly recommended to be provided to Reclaim Hosting to aid in the testing and development of the SSO integration. If a test account cannot be provided Reclaim Hosting will rely on the institution for all testing and error reporting.<\/span><\/p><h3><strong>Attribute Release<\/strong><\/h3><p><span style=\"font-weight: 400;\">The following attributes are necessary for proper function of the Domain of One\u2019s Own environment:<\/span><\/p><ul><li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">A unique identifier (uid)<\/span><\/li><li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Email address (mail)<\/span><\/li><li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">First Name (givenName)<\/span><\/li><li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Last Name (sn)<\/span><\/li><\/ul><h3><strong>Contact Information<\/strong><\/h3><p>Contact Reclaim Hosting support at <strong>support@reclaimhosting.com<\/strong> for any questions or concerns.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-59a9d445 elementor-align-center elementor-widget elementor-widget-button\" data-id=\"59a9d445\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"button.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<div class=\"elementor-button-wrapper\">\n\t\t\t\t\t<a class=\"elementor-button elementor-button-link elementor-size-sm\" href=\"https:\/\/drive.google.com\/file\/d\/11tRiNbah9WvoDx5j3MPCPgY4wQDT9rK4\/view?usp=sharing\">\n\t\t\t\t\t\t<span class=\"elementor-button-content-wrapper\">\n\t\t\t\t\t\t\t\t\t<span class=\"elementor-button-text\">Download .PDF Version<\/span>\n\t\t\t\t\t<\/span>\n\t\t\t\t\t<\/a>\n\t\t\t\t<\/div>\n\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"<p>\u2190 Back to\u00a0Contracts Quick Links Download .PDF Version of SSO Intergation Incident Response Plan Standard SLA Data Processing Agreement Single Sign-On Integration Integrating Campus Single Sign-On with Reclaim Hosting Contents Background Information Supported SSO Methods Overall Process and Responsibilities Technical Requirements Functional Notes Attribute Release Contact Information Background Information Reclaim Hosting (RH) provides support for &hellip; <\/p>\n<p class=\"link-more\"><a href=\"https:\/\/www.reclaimhosting.com\/contracts\/sso-integration\/\" class=\"more-link\">Continue reading<span class=\"screen-reader-text\"> &#8220;Single Sign-On Integration&#8221;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"parent":34166,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"elementor_header_footer","meta":{"footnotes":""},"class_list":["post-7001","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/www.reclaimhosting.com\/wp-json\/wp\/v2\/pages\/7001","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.reclaimhosting.com\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.reclaimhosting.com\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.reclaimhosting.com\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.reclaimhosting.com\/wp-json\/wp\/v2\/comments?post=7001"}],"version-history":[{"count":23,"href":"https:\/\/www.reclaimhosting.com\/wp-json\/wp\/v2\/pages\/7001\/revisions"}],"predecessor-version":[{"id":45201,"href":"https:\/\/www.reclaimhosting.com\/wp-json\/wp\/v2\/pages\/7001\/revisions\/45201"}],"up":[{"embeddable":true,"href":"https:\/\/www.reclaimhosting.com\/wp-json\/wp\/v2\/pages\/34166"}],"wp:attachment":[{"href":"https:\/\/www.reclaimhosting.com\/wp-json\/wp\/v2\/media?parent=7001"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}