Back to Home Page
Home
Contact
Site Map
Privacy Policy
My Account
Forgot Password?
Registration
Registration: End Users
Registration: Site Administrators
Registration: Enterprise ID Administrators
About
Services
Partners
Support
Support: FAQ
Support: FAQ: End Users
Support: FAQ: Site Administrators
Support: FAQ: Enterprise ID Administrators
Support: FAQ: SHIB Federations
Support: FAQ: SHIB Applications
Support: Policies
Support: Policies: Level of Assurance
Support: Policies: End Users
Support: Policies: Site Administrators
Support: Policies: Enterprise ID Administrators
Support: Policies: Attribute Release Policy
Support: Policies: ProtectNetwork IdP Metadata
Support: Downloads
Support: Downloads: Buttons
Support: Downloads: Logos
Support: Policies: ProtectNetwork IdP Metadata
Support: Integrate ProtectNetwork Metadata
 Microsoft®
Visit Site
 InCommon®
Visit Site
 UK Federation
Visit Site
 SWAMI
Visit Site
 University of Texas
Visit Site
 Texas A&M University
Visit Site
 MIT
Visit Site
 View all sites
Visit Site

LOA stands for Levels of Assurance. We provide Shibboleth® compatible UserID’s at two different levels of assurance. End-Users are assigned two different LOA values, namely, 1 and 2 depending on the level of identity vetting and proofing involved.

 
This form of user identity consists of a username and password. The ProtectNetwork team
does not provide any assurance regarding information provided to us (the ProtectNetwork team) by the end-user requesting such a UserID. End-user's simply enter their information requested on UserID registration page and a ProtectNetwork UserID is issued if they provide
a valid email address.


 
This form of user identity consists of a username and password. This form of UserID is issued
to those users who are sponsored by an Enterprise ID Administrator. The Enterprise ID Administrator affirms to the ProtectNetwork team that they have followed adequate and appropriate IDM best practices before sponsoring such users in the ProtectNetwork service. Once such assurance and sponsorship is provided about the user, an LOA-2 userID is issued
to such users and a special attribute indicating the LOA value is set during attribute exchange with service providers.


 

The LOA value is shared by Protectetwork with trusted Service Provider sites using a special attribute: http://protectnetwork.org/pn/loa

The permissible values for this attribute are: LOA-1 LOA-2 A sample AAP.xml rule to accept this attribute would be:

A sample AAP.xml rule to accept this attribute would be:

<AttributeRule Name="http://protectnetwork.org/pn/loa" Header="Shib-PN-LOA" Alias="LOA">
  <SiteRule Name="protectnetwork-idp">
    <Value>LOA-1</Value>
    <Value>LOA-2</Value>
  </SiteRule>
</AttributeRule>