How to enable eIDAS login for public service providers participating in the Public Digital Identity System (SPID)

Since 29 September 2018, all public administrations that offer digital services through SPID or CIE make these services accessible to European citizens with digital identity (eID) recognized in the eIDAS environment.

On this page you will find the information that allows you to accept eIDAS digital identities through the interconnection to the Italian eIDAS node managed by AGID.

The procedures to be carried out are both technical and administrative, and all communications are sent through the specific support system and using the email address indicated in the text.

Technical and administrative procedure

The Italian eIDAS-Node operates like a virtual SPID identity provider, so the impact on the configuration activities of the service provider participating in SPID is minimal. To enable eIDAS login:

  1. Read the technical rules and guidelines related to SPID and the eIDAS notice 01-2018.

  2. Extend the current SPID metadata by following the specifications in section 4 eIDAS notice 01-2018

  3. After extending the metadata, make it available on a 'https' url of your domain and communicate it to AgID by forwarding it to the email: spid.tech@agid.gov.it . AgID has the task of verifying the metadata received and, if necessary, of reporting useful changes to ensure compliance with the technical rules. AgID feedback in relation to its verifications is provided in response to the communication received.

  4. If there are changes to be made, you will need to repeat the transmission procedure described in point 3. If the metadata file is sent successfully, AgID will transmit the metadata to the Italian eIDAS-Node. Requests to upload configurations on the eIDAS-Node are made every day, Monday through Friday, at 6 pm.

  5. The transposition of metadata by the Italian eIDAS node is a prerequisite for following the tests and putting into production the online services that use the eIDAS login.

In addition to the technical rules, you must follow AgID's design rules: all graphics and instructions for using them are included in, eIDAS notice 01-2018 in paragraph 3.

Are you a SPID service provider?

The metadata of the SPID identity provider shown by the eIDAS-Node are:

  1. Production


  2. Component SP-Proxy IDP-IT
    Metadata URL https://sp-proxy.eid.gov.it/spproxy/idpitmetadata
    Metadata Signing Certificate Metadata Signing Certificate
    Certificate fingerprint SHA 1
    59:94:8E:78:41:0D:55:D4:93:69:B5:15:21:6A:4C:80:80:97:48:E8
    SHA256
    38:61:50:67:7C:FD:97:02:5B:93:2F:23:37:B1:12:40:AC:B0:A1:61:F4:DD:4B:67:F1:2C:8E:2A:65:BF:64:EB

  3. QA (Quality Assurance)

Are you a SPID identity provider?

The metadata of the SPID SP shown by the eIDAS-Node are:

  1. Production


  2. Component IDP-Proxy SP-IT
    Metadata URL https://idp-proxy.eid.gov.it/idpproxy/spitmetadata
    Metadata Signing Certificate Metadata Signing Certificate
    Certificate fingerprint SHA 1
    68:B4:8C:4D:52:05:63:43:1D:2A:CF:C2:FD:41:98:CF:C5:26:43:C3
    SHA256
    A0:75:D0:8B:FB:CF:12:03:B0:15:77:45:3A:34:85:FA:77:E0:0D:BB:79:9B:2E:16:8F:FF:13:AC:12:73:40:65

  3. QA (Quality Assurance)

Technical and administrative support

If you need support when updating your systems for eIDAS login, you may request support or search previous responses and solutions on thespecific support system

References


eIDAS notice 01-2018
Repository Github Nodo Italia eIDAS

torna all'inizio del contenuto