You can configure Shibboleth 3.2x as your identity provider for enterprise logins in the Artstor Digital Library. The configuration process involves two main steps: registering your enterprise identity provider with Artstor and registering Artstor with the enterprise identity provider. Please follow this guide if you want to integrate your Shibboleth or other IDP with Artstor SP.

Please note that Shibboleth access and Proxy access do not work well together. We recommend institutions choose only one of these methods for their users.

STEP 1: Required Attributes

If you have requested Shibboleth access for your institution, we ask you to release the Shibboleth Attribute listed below. Please contact us if you can’t provide any of these attributes.

Attribute Name Description Example
urn:oid:1.3.6.1.4.1.5923.1.1.1.10
(EduPersonTargetedId)
(required)
Persistent identifier that provides Artstor (SP) with a unique identifier for the account holder authentication URL of IdP!SP Entity ID!
Unique Identifier
urn:oid:0.9.2342.19200300.100.1.3
mail
Email
urn:oid:1.3.6.1.4.1.5923.1.1.1.5
EduPersonPrimaryAffiliation
Faculty, student
We are assigning higher privileges in our system for faculty value
faculty
staff
employee
student
member
affiliate

STEP 2: Metadata exchange

Artstor is a member of the InCommon Federation, SWITCHaai (Switzerland), and UK Access Management Federation for Education and Research (UK), meaning you can read our production metadata from the federation metadata file. If you are not a member of one of these federations, then you can download our metadata from https://sso.artstor.org/Shibboleth.sso/Metadata and email us your metadata file so our admin can add you to the Shibboleth installation.

STEP 3: Verify Released Attributes

  1. Go to https://sso.artstor.org/sso/validate.html
  2. Find and click on your institution’s name in the list. The page may take a while to load. Enter your institutional credentials when prompted. The resulting page should list the attributes released.
  3. Please ensure EduPersonTargetId is released.
  4. Contact us to confirm the attribute is released.

STEP 4: Testing from  the Artstor home page:

  1. We will send you your Shibboleth testing URL. This URL will take you to the Artstor Digital Library home page.
  2. Click Log in through your Institution in the upper right corner of the Welcome box.
  3. Select your institution from the dropdown menu
  4. Login via your IDP (using your institutional Shibboleth credentials)
  5. Select create a new user or join account if you are an existing Artstor user. You should be redirected to the Artstor Digital Library home page as a logged-in user.