Federated Identity Service - Help

Last Updated: 02/26/2020

Log in Information

Federated Identity Service provides access to multiple services via single sign-on through IdentiKey authentication. Federated Identity Service will then share your attributes with the service(s) being accessed. Attributes are shared securely with the service(s) and do not contain any private or sensitive information. You will be asked to review and release these attributes on your first visit. If you do not release the attributes, you cannot access the service.

If you were unable to login using your IdentiKey, contact the IT Service Center at 303-735-4357 (5-HELP) or oithelp@colorado.edu.

Session Time Limit

Federated Identity Service and the services accessed through it have session time limits to minimize the exposure of a forgotten Web browser. Because of these time limits, you may be prompted to sign in again or continue your session. Time limits are per service and therefore not standard.

Log out Information

In order to completely logout of your Federated Identity Service session, it is necessary to close your web browser. Logging out of a service will not truly end a session until the web browser is closed or the Federated Identity Service time limit is reached.

I logged into Federated Identity Service earlier, but the log in page appeared again. Why?

The system and each service have pre-set timeouts, which aid in minimizing the exposure of forgotten Web browser sessions.

I went to a Federated Identity Service login page and I wasn't required to log in. Is there a security problem?

No. Once you have started a session in Federated Identity Service, you are logged in to all CU Boulder services that utilize Federated Identity Service to authenticate. Don't forget to log out once you are finished.

I would like to incorporate Federated Identity Service into my website. Where can I find more information?

Contact the IT Service Center at oithelp@colorado.edu or 5-HELP.

What is Federated Identity Service?

Federated Identity Service provides an environment in which users can authenticate/log in one time with their respective CU Login Name and Identikey password to a central server in order to access multiple services protected with Federated Identity Service without needing to re-authenticate.

What is my Digital ID Card? Why would I “reset my release approvals”?

You Digital ID card outlines the identifying information that is shared with the service(s) you are logging into to provide you access to that service. You can review and release your approvals at any time. If the attributes change for any reason, you will be prompted to review and release at your next login.