UConn’s NetID SSO service provides secure, consistent authentication to several hundred University web applications. Integration with the SSO solution provides the following benefits:

• System Security: Password authentication is handled in one highly secured and auditable interface, eliminating the need for individual applications to each accept and process the password.
• User Security: Users see a consistent interface which is known safe to enter passwords, reducing the likelihood of successful phishing/pharming attacks.
• User Experience:Users need only authenticate once,and the knowledge of that authentication will be applied to all integrated applications that the user accesses during the same session, removing the need for the user to re-authenticate.

The collection of technologies, standards, and protocols deployed for the SSO service have been carefully chosen to allow for integration of a wide variety of applications, platforms, and languages. While not all applications can directly integrate, most COTS, FOSS, or locally developed applications should be able to integrate with little effort.

Preferred: Integration with Entra

New applications and existing applications should use Entra for authentication wherever possible. The only populations that cannot use Entra at this time are UCH and Alumni, and work is being done to support those populations.

New application integration requests should be through a ticket to the Technology Support Center. Entra supports SAML, OIDC, and select other protocols.

Legacy: Integration with CAS

Applications that only support the CAS protocol for SSO, or need to support UCH or Alumni users still must use the on-premise CAS service for SSO at this time.

New CAS integration requests should be made via a ticket to the Technology Support Center. CAS supports the CAS protocol and SAML for SSO.