Authentication and authorisation

Authentication is the means by which you log in and identify yourself. Authorisation is the means by which a service determines whether an authenticated person should have access to a service.

The major authentication services in the University are 'Your University Login' and Active Directory. Both are synchronised to use the same password.

There is also a central authorisation service provided by an LDAP directory. This gives information about individuals to services so that they can decide whether someone is authorised to use the service or not.

Using Multi-Factor Authentication (MFA) significantly increases the security of accounts, and therefore helps keep your personal data, and the University’s data secure.

Your University Login (formerly 'EASE') is our reduced-sign-on service, providing access to various restricted resources.

Authorisation is the means by which a service determines whether an authenticated person should have access to a service.

Shibboleth is a "federated" identity management system used to provide access to a variety of web applications, in particular e-journals.

Around the University are many hundred card readers which enable University card holders to selectively gain access to restricted areas. Entrances controlled by card readers are called "access control doors".