Basic Service Operation Clause Samples

Basic Service Operation. ● When logging in for the first time to any of the applications integrated with the NYU Login Service, the end-user browser is redirected to ▇▇▇▇▇://▇▇▇▇▇.▇▇▇.▇▇▇, where the end- user is prompted for his/her NetID and password. ● The validity of the entered password is checked against the NYU Enterprise LDAP Directory and, if found to be valid, the end-user's browser is redirected back to the destination web site. Browser cookies are set by the NYU Login Service, and the NetID of the authenticated end-user is conveyed back to the destination application. ● Subsequent connections to this, or other, integrated applications rely on the browser cookies that have been set and/or session information (maintained at the client application or at the central Login server) in order to enable or deny continued access by the end- user. ● The NYU Login Service also supports a partial single sign-out capability that many partner services can take advantage of. To support this functionality, the Sign Out function of each integrated application should redirect the end-user's browser to the logout URL ▇▇▇▇▇://▇▇▇▇▇.▇▇▇.▇▇▇/sso/UI/Logout. Note that applications integrated using Federation approaches (e.g. ▇▇▇▇, Shibboleth) will not receive a notification of log-out from OpenSSO, and will consider the user logged-in (even if they have invoked a sign- out link in another integrated application).