InCommon Metadata, CA, and WAYF

Metadata

Shibboleth v1.3 metadata is located at:
http://wayf.incommonfederation.org/InCommon/InCommon-metadata.xml

Metadata Submission List (* indicates a required item.)
Submit your metadata through the Administrative Login (see "Site Admin" link in the left nav)

Metadata for Identity Provider systems (IdP)

Top Domain Name*
URL of Single Sign On Service*
URL of Artifact Resolution Service
URL of Attribute Authority Service*
URL of Error Page
KeyName (CN of your selected Digital Certificate)*
Technical contact name and email address*
Administrative and/or Support contacts

Metadata for Service Provider systems (SP)

Provider Id URI*
Assertion Consumer Service: Type (post, artificat) and URL*
KeyName (CN of your selected Digital Certificate)*
Technical contact name and email address*
Administrative and/or Support contacts

InCommon Certificate Authority

The metadata signing certificate:
https://wayf.incommonfederation.org/bridge/certs/incommon.pem

The InCommon CA root certificate:
https://wayf.incommonfederation.org/bridge/certs/ca.pem

Certificate Revocation Lists:
http://incommoncrl1.incommonfederation.org/crl/eecrls.crl
http://incommoncrl2.incommonfederation.org/crl/eecrls.crl

Server Cert Profile from the CP/CPS (pdf)

CSRs (Certificate Signing Requests) will be processed and e-mailed to the Administrative contact on the next business day. The certificate will be in PEM format to be used for participation in the Federation. Submit CSRs using the Site Admin Login.

The InCommon WAYF

The preferred method for accessing the InCommon WAYF ("Where are You From?") servers is via its DNS name – https://wayf.incommonfederation.org/InCommon/WAYF – rather than by numeric IP address. DNS resolution is preferable since there are two InCommon WAYF servers, a primary server and a backup server. At the discretion of InCommon, either server may be designated as primary. If needed for other reasons, the IP addresses for the InCommon WAYFs are: 192.148.244.135 and 207.75.165.125