Identity Federation defines a set of technologies used to provide authentication (sign-in) services for applications external to UCSB. The value of federated identity services within the University system is that an application can be built by one institution and shared with many others, reducing duplication of effort across campuses.


UCTrust was created by the Information Technology Leadership Council as the basis for a unified identity and access management for the University of California system. UCTrust enables authorized campus individuals to use their local campus electronic credentials such as the UCSBnetID to gain access to participating services throughout the UC system. UCTrust is based on industry standard technologies and a common set of identity attributes and identity management practices.

UCTrust is built on Shibboleth software developed by Internet2 Middleware Architecture Committee for Education.


UCTrust members -- including UCSB -- are members of the InCommon Federation, a nationwide higher-education federation. Membership in InCommon expands the number of applications available to UCSB principals such as those provided by vendors, granting institutions, and other services. See the InCommon FAQ for details.

Adding New Service Providers

To ensure that our federation participants are aligned with UCSB business needs, we require that each individual SP go through a sponsorship process. SP sponsorship entails that a University employee act as a steward of the SP, serving as the point of contact for the business relationship between the SP and UCSB.

Prior to integrating an SP into the UCSB federation the sponsor must provide to Identity Services a short statement of stewardship, describing the purpose of the SP and its role in University Business along with technical contact information for the hosting organization. All reasonable sponsorship requests will be reviewed and approved by our staff in short term. More details are available on our authentication implementation detail.