OrgSync's login system can be integrated with a number of single sign-on authentication services, including CAS, SAML, and Shibboleth. Enabling campus authentication will restrict access so that only active students, faculty and staff can login into the system.
Campus authentication allows students to bypass the OrgSync user registration process by simply logging in using their same campus login username and password. For first time users, their OrgSync account will be automatically created using active directory information.
Enabling authentication also allows campus IT to establish single sign-on processes by integrating OrgSync with other campus portal systems, such as SunGard, Luminis or Blackboard. This allows students to access all their campus information with a single username and password.
Single-Sign on Authentication
CAS (Central Authentication Service)
CAS can be set up using three specific URLs provided by campus IT (callback URL, validate URL, and logout URL). Each user will log into OrgSync from a campus-hosted login page that will redirect and log them into OrgSync after successfully being authenticated. CAS Documentation
SAML (Security Assertion Markup Language)
SAML can be set up with the Identity Provider's Single Sign On Target URL and the certificate fingerprint key provided by campus IT. Each user will log into OrgSync from a campus-hosted login page that will redirect and log them into OrgSync after successfully being authenticated. SAML Documentation
Shibboleth is set up with a metadata swap, which requires our development team to work directly with campus IT to configure the technical information. Each user will login from a campus-hosted Shibboleth page and will be passed through to the OrgSync system upon successful authentication. Shibboleth Documentation
LDAP (Lightweight Directory Access Protocol)
LDAP can be used to authenticate users by connecting OrgSync to the campus LDAP directory servers. This will require users to login to OrgSync through our regular OrgSync login page using their school email and password. LDAP Documentation