The technology behind Stony Brook’s SSO is called Shibboleth.

It’s an open source, standards-based SSO solution that implements the Security Assertion Markup Language (SAML), an open-standard data format for exchanging authentication and authorization data between parties.

As a member of the InCommon Federation – a group of organizations focused on creating a common framework for collaborative trust in support of research and education – Stony Brook may participate in Single Sign On (SSO) with other colleges and universities and their partners.

As the InCommon Federation is also part of eduGAIN, which is an international interfederation service, Stony Brook may participate in SSO with member institutions all over the world. This means there are thousands of possible services around the world that could be accessed today using our SSO services.

The SSO service is now protected by Duo 2-Factor Authentication.

When a person signs out of an application that they used SSO to sign into, it is best to close the Web browser. The reason this is important is because there are no guarantees in an SSO environment that you are properly logged out of your applications, so closing the Web browser when finished is the best way to be sure that you've actually logged out. If you do not close the Web browser, there is always a chance that you will still have an active session to one of the applications you had signed into.

If you are not sure what your NetID or NetID password is, log into the SOLAR System and select NetID Maintenance for more information. Please remember to change your NetID password on a regular basis to protect your access.