What is the RWTH Single Sign-On?
The RWTH Single Sign-On is the primary login method for online platforms at RWTH Aachen University.
General Information on the RWTH Single Sign-On Account
You can get an RWTH Single Sign-On account through different coupon procedures. For example, students receive a coupon from the Registrar's Office after enrollment. Employees receive a coupon from the Human Resources Department.
Your username has the format ab123456. You can set a password or get your username in the IdM PasswordReset.
For a step-by-step guide on logging in with RWTH Single Sign-On, go to RWTH Single Sign-On with MFA.
Your RWTH Single Sign-On account provides access to a variety of online platforms.
When you log in, the platform receives information to determine whether you are an authorized user. For example, access to the RWTH Intranet is restricted to employees. If a student tries to access it, they will receive an error message. You can see what information is forwarded to a platform by checking the box "Display overview of personal data to be forwarded" when you login. For more information, see Explanation of Attributes.
With your RWTH Single Sign-On account, you can log in to platforms outside of RWTH Aachen University, such as sciebo.
Information for web application providers
The IT Center operates a central Shibboleth service and local federation for user authentication on local web applications. RWTH Aachen University is a member of the DFN-AAI federation of the German Research Network (Deutsches Forschungsnetz). This makes it possible to use numerous services of other universities that are a member of DFN via the central login server.
The Shibboleth procedure allows you to use the central login server at the IT Center to authenticate your users. This removes the need for local user accounts.
The central login server has access to selected Identity Management data from RWTH Aachen University. Based on these personal attributes, your application can determine which access rights to grant (authorization). For example, you can restrict access so that only students can log in to your application. The persistent, distinct username provided by the login server allows you to assign a local user profile and store additional personal data.
More information is available under Information for Shibboleth Service Providers in the menu on the left.
