Centralised single sign-on (SSO) offers users significant advantages. It is no longer necessary to remember different usernames and passwords for each individual application on campus.

All members of TU Darmstadt have a TU ID and password that allows them to access all services connected to the SSO system. Once you have logged in to the single sign-on server, no further authentication is required within a browser session. All connected websites recognise the logged-in person and therefore do not require further login. The central login page protects your password, as login data (password) is not forwarded to connected services.

The SSO network also means less work for IT administrators of connected systems. Separate user administration is no longer necessary, as this is maintained and kept up to date centrally by the university.

Since the service is directly linked to the central user records, it is automatically made available to new users with the TU ID, and former employees immediately lose their access rights. The implementation of a secure login is no longer necessary for the service operator, as the SSL-secured authentication process is handled by a trusted single sign-on authority.

The single sign-on server does not manage permissions (authorisation). It only authenticates the identity of a user (TU ID) for the connected service and optionally transmits attributes (opens in new tab) (first name, last name, etc.) of the user.