This guide uses the following terminology:

  • Administrator(s): This the person who handles all administrative tasks within an Organization and its sub-organizations. SSO Passport provides federated administration through the assignment of one or more Administrator account(s) for each Organization identified within a global hierarchy of Organizations.

  • Applications: Web-based products and services (content, tools, apps, etc.) that are available from the SSO Passport Catalog and that are configured for distribution to their respective Group(s) of end users based on each end user’s Role.

  • Catalog: Subscription-based e-commerce portal that contains a catalog featuring a selected range of free and paid Resources that are pre-integrated into SSO Passport and available for activation and use by Organizations. Standard Organizations may activate an unlimited number of free Resources. Premium Organizations may activate an unlimited number of both paid and free Resources.

  • Connector: The SSO “link” to each of the available Resources.

  • Group: This is a collection of end users. A Group can contain users with multiple Roles.

  • Organization(s): Accredited educational or corporate institution that is configured to access SSO Passport. Each Organization can be part of a hierarchy of Organizations (see Architecture; opens a new article).

  • Provisioning: Process of granting access to Resources to individual users, Roles, or Groups, either manually or by using automated Role policies.

  • SSO Passport: Web-based application that end users (such as students) log into in order to access the Resource(s) assigned to them. This Guide focuses on the Admin Console that Administrators use to manage Organizations and sub-Organizations.

  • Resource(s): Products available to Organizations and their users through the SSO Passport catalog. These include teaching and learning content and tools for end users, as well as connector, infrastructure and data tools for Organization Administrators and leaders. After acquiring these items through the Catalog, Administrators can assign access to individual users, Groups, or their entire Organization, as appropriate.

  • Role: Set of access privileges assigned to an end user. This can be Non-teaching staff, Student, Parent or Teacher.

  • Security: End user accounts can be uploaded through CSV, by direct connection to LDAP sources, Google Apps domains, or from any other data source, such as SIS and HR systems. Once established, end user accounts are associated with the appropriate authoritative source for login authentication. This source can be the local Gateway database, one of many LDAP sources (including Active Directory), or another community (such as Google or Moodle).