Topics Map > University of Chicago > IT Services > Accounts, Identity, & Security

What is Shibboleth?

This article explains Shibboleth technology at the University of Chicago.

Shibboleth is a Single Sign-On tool that allows you to log in once (for a preset period of time—usually eight hours here at the University of Chicago) to any Shibbolized service that you’re eligible to use, and then have access to all other Shibbolized sites to which you have access without having to log in again—hence the term, “Single Sign-On.”

Not all services at the University use Shibboleth authentication, so you may not have noticed that after you authenticated to the Directory, for example, ( and then went to the University portal (, you did not have to log in again. But, that is what happened—and the more services that enable Shibboleth authentication, the fewer times you will have to sign on when you go to access restricted services.

Shibboleth not only makes it easier to access your services, it provides better security for you because you are not resending your password multiple times for access into many different systems. You will use your CNetID and password to authenticate the first time you log in. If you are able to authenticate successfully, all other Shibboleth-enabled applications will determine whether or not you can access their site; access to Shibbolized sites is based on whether or not you are authorized to use the site’s service, not whether you are both authorized and can authenticate (log in) to the service.

More information about Single Sign-On and about Shibboleth is available in the University’s Knowledge Base:

See Also

Keywords:shib, single_sign_on, authenticate, authorized, SSO, shibbolized   Doc ID:40961
Owner:Astrid F.Group:University of Chicago
Created:2014-06-09 17:27 CDTUpdated:2017-04-05 08:56 CDT
Sites:University of Chicago, University of Chicago - Sandbox
Feedback:  1   0