Identity Access Management & Single-sign-on (SSO)
Single-sign-on (SSO) is an authentication service that allows system owners to make use of the university-managed identity repository (i.e. Active Directory) to authenticate staff and students to access various online university services with one set of credentials. Once users logged in, they can access multiple university services without having to repeatedly re-enter EID and password. There are currently two parallel single-sign-on authentication systems at CityU, namely the Active Directory Federation Services (ADFS) and Shibboleth. Although they are separate systems (Identity Providers), both the ADFS and Shibboleth authenticate the accounts using the same credentials (i.e. CityU EID and AD/LAN password pair).
Examples of services that are authenticated through SSO:
Support & Contact
If you have a new service and would like to set it up with SSO, please submit an online CSC Work Request to the Computing Services Centre (CSC). To implement SSO for a new service, the supplier or service must implement SAML 2.0 or support Shibboleth.