| title |
|---|
About the ACCESS IdP |
- August 1 2022: The ACCESS IdP is pre-production, using pre-production APIs and pre-production user data. The IdP is registered with CILogon and Globus but registration with InCommon is still in progress.
- August 23 2022: The ACCESS IdP will begin production operation.
ACCESS Operations operates an ACCESS InCommon Identity Provider (idp.access-ci.org) similar to the XSEDE InCommon Identity Provider (idp.xsede.org). The ACCESS IdP:
- appears as "ACCESS CI" in the list at cilogon.org, similar to how idp.xsede.org appears as "XSEDE".
- uses the same usernames and passwords as idp.xsede.org and the same Duo MFA configuration.
- operates under the same privacy and security policies as idp.xsede.org.
- asserts eduPersonPrincipalName (ePPN) values of [email protected].
[email protected] from idp.access-ci.org is the same person as [email protected] from idp.xsede.org (i.e., the same [email protected] Kerberos principal).
Applications (such as Globus) currently relying on [email protected] values from idp.xsede.org will need to migrate to [email protected] values from idp.access-ci.org. CILogon can provide ID Tokens containing [email protected] and/or [email protected] values on a per-application basis as needed to support a smooth transition for applications. Contact [email protected] to request a custom configuration. Include your client_id in the request.