Becoming part of the eduID.lu infrastructure

Becoming an Identity Provider

The first step to becoming an eduID Luxembourg Identity Provider is to check whether your organisation is eligible for the service.

As a second step, your organisation needs to agree to the eduID Luxembourg policy declaration and data protection agreement.

Finally, as a technical step, you need to implement one of the technology profiles. Curently, there is only one technology profile for the SAML 2.0 protocol: you need to set up a SAML 2.0 Identity Provider for your users, and make the SAML metdata (the "<EntityDescriptor>") available to eduID.lu staff. In return, eduID.lu will supply you with a list of all connected Service Providers. To interconnect with the service providers, your Identity Provider will need to keep this list of available Service Providers up-to-date in its own SAML metadata.

A very good software to use for SAML is simpleSAMLphp.

Becoming a Service Provider

The first step to becoming an eduID Luxembourg Service Provider is to review the eduID Luxembourg policy declaration and data protection agreement.

As a second step, your organisation needs to apply for participation as a Service Provider. The application implies agreement to the policy and data protection agreement.

Finally, on a technical level, you need to protect your web content with the SAML 2.0 protocol, and make the corresponding SAML metdata (the "<EntityDescriptor>") available to eduID.lu staff. In return, eduID.lu will supply you with a list of all connected Identity Providers. You can select which of these Identity Providers you trust for login management. To interconnect with new Identity Providers, your Service Provider will need to update the list of available Identity Providers on a regular basis.

A very good software to use for SAML is simpleSAMLphp.

Contact and Application

For all further questions, and to apply to become Identity Provider and/or Service Provider, please contact admin@restena.lu.