CAF – Recommended IdP Software

Any software that supports SAML2 can be used in FIM. The prevalent installation choice is Shibboleth, which is also CANARIE’s chosen base for the reference FIM implementation due to feature robustness, security, and maintainability.

Other software may be used but may require sites to perform extra steps or bear increased security risks that the Shibboleth software already provides by design.  Additionally, CANARIE has an automated installation of the FIM reference Identity Provider implementation that can be found here.

Comparing SAML2 Identity Provider Solutions

Organizations using something other than Shibboleth as their Identity Provider should take into consideration the differences they may encounter and how they should respond to the differences in features supported, such that they remain in compliance with federation policies