The following table summarises the position on various federations on who is eligible to join the federation as an Identity Provider or as a Service Provider. Please note that this is a snap-shot representation from the time the documents were analysed and may not represent up-to-date information / accurate current policy.
Federation | Eligibility IdPs | IdP Restrictions | Eligibility SPs | SP Restrictions | Document | Comments |
Austria, ACOnet Identity Federation (eduID.at) | In order to become an Identity Provider in the ACOnet Identity Federation an organization MUST be eligible for ACOnet participation and MUST become a participant of ACOnet. | Must be a participant of ACOnet (i.e., NREN subscriber) | In order to become a member of the ACOnet Identity Federation as a Service Provider only, and to receive identity information from ACOnet Identity Federation Identity Providers, a Service Provider is NOT REQUIRED to become a participant of ACOnet (i.e., not an NREN subscriber, but a federation member nonetheless). | Restrictions are around following technical requirements of the federation, not on type. | Policies, see also Membership | Nothing in policy restricts service type. |
Belgium, Belnet R&E Federation | Only CLIENTS of Belnet who have signed an agreement for the provision of internet services in the category ‘Research and Education’, may accede to the Belnet R&E Federation as IDENTITY PROVIDER. If there is no agreement anymore between the IDENTITY PROVIDER and Belnet for the provision of an internet service, then automatically every role of the IDENTITY PROVIDER will be removed from the system. The IdP are Belnet's customers from the research and education (R&E) community, excluding the administrations and ministries of all levels. | Must be a member of Belnet | The SERVICE PROVIDER provides services to users of the affiliated organisations. Thanks to the federative service, it is not necessary that the service providers still store or manage the identity data, which have been forwarded by the IDENTITY PROVIDERS. ccept the technical minimum requirements in the Technical Policy of Belnet. Belnet reserves the right to alter the technical minimum requirements in the Technical Policy at any time. The alterations will be mentioned on the concerned website of Belnet and will come into effect two months after their notification via e-mail by Belnet. The SP are any companies that offers a service or content that fullfills the needs of Belnet's R&E community members, respecting the defined policy. | Restrictions are around following technical requirements of the federation,not on type. | Federation Policy and MRPS | Nothing in policy restricts service type.
|
Brazil - CaFe | edugain policy links broken. | |||||
Canada - Canadian Access Federation | edugain policy links broken. | |||||
Chile -COFRe | For Identity Provider Organizations, REUNA member institutions can apply to this membership directly. For other institutions its application shall be studied and take a resolution and informed via email within 15 days. | Possible to become an IdP if non-member subject to scrutiny | For apply to a Services Provider membership, is needed a previous recommendation from any of the Federation Members acting as an Identity Provider Organizations. | Recommendation from an IdP needed, implying service is required by community. | Federation Rules, including appendices. | Only restriction on SP is recommendation. |
Colombia - COLFIRE | Eligible organisations published on website (none currently posted). | No specific limitations | Eligible organisations published on website (none currently posted). | No specific limitations | Federation Policy | No specific restrictions. |
Croatia - AAI@EduHr | Policy not available in English. | |||||
Czech Republic - eduID.cz | 3.1 eduID.cz is used by organizations connected to the CESNET Network, pursing their research and education-related objectives. 5.1 The eduID.cz Federation may be joined by any organizations that fulfils the Access Policy. Such an organization also needs to meet technical conditions and adhere to this Policy. Final decision on admitting an organization to the eduID.cz Federation belongs to the Federation Operator. | Limited to organisations that have signed the National Research and Educational Network Access Policy - so effectively members | 5.2 Organizations that do not fulfil the AP may join the federation in case they provide services to members who have joined under section 5.1. Organizations joining the Federation in this manner are not allowed to join identity provider services. Final decision on admitting any organization into the eduID.cz Federation belongs to the Federation Operator. | No specific limitations - legal and technical checks are done. | Federation Policy and MRPS | |
Denmark - WAYF.dk | ||||||
Ecuador - MINGA | ||||||
Finland - Haka |
| Home organisations other than universities and polytechnics are subject to federation steering group approval. | Organisations providing services to End users in Home organiations. | SPs other than Home Organisations subject to steering group approval | Joining and registrations | |
France - Fédération Éducation-Recherche | member organisation: federation participant which can act as both an Identity Providder and as a resource provider., A member organisation is an organisation entitled to use the RENATER network with an up-to-date agreement with GIP RENATER
Endorsed Member Organisation: education and / or research organsation that does not have an agreement with RIP RENATER but that has signed the federation charter. | Must be a RENATER member or another type of research / education organisation. | Partner Organisation: federation participant proposing one or several resources. Any type of organisation can become Partner of the Federation: public entity, association, French or foreign company. | No specific limitations | Federation Charter | No specific limitations on SPs. |
Germany - DFN-AAI | ||||||
Greece - GRNET AAI | ||||||
Hungary - eduID.hu | ||||||
Ireland - Edugate | ||||||
Israel - IUCC Identity Federation | ||||||
Italy - IDEM | ||||||
Japan - GakuNin | ||||||
Latvia - LAIFE | ||||||
Lithuania - LITNET FEDI | ||||||
Norway - FEIDE | ||||||
Poland - PIONIER.Id | ||||||
Slovenia - arnesAAI | ||||||
Spain - SIR | ||||||
Sweden - SWAMID | ||||||
Switzerland - SWITCHaai | In order to operate an Identity Provider in the SWITCHaai Federation an organization must be part of the SWITCH Community (as defined by the SWITCH foundation). Or the institution has close collaboration with the SWITCH Community and joins as a SWITCHaai Federation Partner that is eligible to operate an IdP. | No restrictions for institutions in the SWITCH Community. SWITCH decides whether a Federation Partner is eligible to operate an IdP. | Institutions eligible to operate an IdP are also eligible to operate any number of Service Providers. Further institutions may join as SWITCHaai Federation Partner. | Unless the institution has already well established relationships with institutions from the SWITCH Community, they need to find a supporting institution from the SWITCH Community that expresses its support by signing on the application form. | SWITCHaai Service Description (includes the policy) and MRPS | No specific restrictions. |
The Netherlands - SURFconext | ||||||
U.S.A. - InCommon | ||||||
United Kingdom - UK federation |