Shibboleth

Shibboleth

The Shibboleth procedure allows you to log in to a large number of online services using a single authentication ("Single-Sign-On" / "SSO") with your Hohenheim user account on the University of Hohenheim's IDM (identity management system). This means that in many cases it is no longer necessary to log in separately to external providers (e.g. e-book providers) or to use a VPN connection.

How does Shibboleth work?

If you would like to access an electronic service offered by KIM Hohenheim, you can in many cases already log in via Shibboleth.

In many cases, external services also offer login with the user account of the home institution. Look for phrases such as "Log in via Shibboleth or Athens", "Login via your institution", "Institutional Login" on the provider's website. Sometimes these links are also hidden under the general link "Login" or similar formulations.

In most cases, you can then search for "Hohenheim" or "Stuttgart-Hohenheim" using a search function or select the University of Hohenheim from a drop-down menu.

You will then be taken to the University of Hohenheim's registration page. Here you use the data of your Hohenheim user account, which you also use for other KIM services such as webmail, intranet or ILIAS. The process is independent of the end device and is possible without installing additional software. After successful authentication, a second page will be displayed informing you which data will be transferred to the service. You must then click on "Agree" again. This consent is saved so that the intermediate step is no longer necessary. However, you can also withdraw your consent at a later date.

After logging in, you will be redirected back to the provider's site where you can now use the licensed e-resources.

Is my data safe?

The data is transmitted in encrypted form and can only be decrypted by the respective communication partners. Data protection requirements must be met during transmission.
Compared to logging in directly with a provider, compliance with data protection regulations is even easier: data is only stored in one place and is only passed on from there in compliance with legal regulations. The procedure is data-saving, only necessary data is transmitted to the service provide