Institutional IDP

Alma can integrate with institutional or enterprise identity providers that support LDAP or single sign on based on SAML or CAS.

There are cases in which only part of the library’s users are managed in the institutional identity provider. For example, students might be part of the institutional IdP while community borrowers are not. In such cases, the users that are managed in the IdP should be authenticated using the above methods, and the users which are not managed in the IdP can be authenticated using social login.

Usually, users that are part of an institutional IdP are defined as external users in Alma, and are synchronized on a regular basis using the students information system integration.

For more information on how to configure authentication with an enterprise identity provider, see the following sections: