SWITCHaai Federation Metadata
The federation metadata describes Identity Providers and Service Providers as well as trust information of the federation.Federation Metadata Shibboleth for 2.1 and above
The following files are updated on an hourly basis.
| Shibboleth 2.1 and above | |
|
SWITCHaai Federation metadata.switchaai.xml |
AAI Test Federation metadata.aaitest.xml |
| The federation metadata files are digitally signed with the SWITCHaai Metadata Signer certificate. This certificate chains up to the SWITCHaai Root CA certificate used as the trust anchor. More information about the SWITCHaai Root CA. | |
Update of Federation Metadata
We require the systems in our federation to update the SWITCHaai federation metadata at least daily. Hourly updates are recommended.
The Shibboleth IdP and SP version 2 can be configured to automatically update the metadata. For a configuration reference, see the Shibboleth Wiki for the IdP Metadata Provider and the SP Metadata Provider.
Federation Metadata Shibboleth for earlier versions
These files are updated every full hour provided that there are changes.
| Shibboleth 1.3 / 2.0 | |
|
SWITCHaai Federation metadata.switchaai.xml |
AAI Test Federation metadata.aaitest.xml |
| These files are digitally signed with the SWITCHaai Metadata Signer certificate. It is recommended to check the signature with the Shibboleth metadatatool after the download. | |
Shibboleth 1.3.x Automatic Metadata Update
It is strongly recommended to update the Federation metadata automatically to ensure seamless communication with all new Identity and Service Providers. While Shibboleth 2.x supports automatic metadata update out-of-the-box, this is not the case for Shibboleth 1.3 components. Therefore, one should install a cron-job to automatically update metadata.
- Service Providers 1.3.x
- Identity Providers 1.3.x