Technical definition of SSO
Single sign-on (SSO) is a property of access control of multiple related, but independent software systems. With this property, a user logs in once and gains access to all systems without being prompted to log in again at each of them. (From Wikipedia)
Technical example of use
SAML 2.0 attributes required by Sketch Engine
To assign a SSO authenticated request to an organisation licence and a user profile in Sketch Engine, the following SAML 2.0 attributes should be released by the identity provider:
- eduPersonScopedAffiliation (urn:oid:18.104.22.168.4.1.5922.214.171.124.9) – mandatory,
- eduPersonTargetedID (urn:oid:126.96.36.199.4.1.59188.8.131.52.10) – mandatory,
- email (urn:oid:0.9.2342.19200300.100.1.3) – mandatory (enables responding to user’s support requests),
- displayName (urn:oid:2.16.840.1.1137184.108.40.206) – mandatory (enables person identification within the organisation).
An institution can be checked in the eduGAIN Entities Database for membership and SAML 2.0 support.