Africamuseum IdP

IdP name: Africamuseum IdP
SP name
Entity ID: http://adfs.africamuseum.be/adfs/services/trust
adfs: http://adfs.africamuseum.be/adfs/services/trust
MDQ: MDQ a38dfed7ca
Roles: IDP
Federation: published/HYBRID-METADATA
Collisions

Entity Categories

https://refeds.org/category/code-of-conduct/v2

Metadata

Metadata (XML)

<?xml version="1.0"?>
<md:EntityDescriptor xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:wayf="http://wayf.dk/2014/08/wayf" xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="http://adfs.africamuseum.be/adfs/services/trust">
    <md:Extensions><wayf:wayf xmlns:wayf="http://wayf.dk/2014/08/wayf"><wayf:federation>eduGAIN</wayf:federation><wayf:phphfeed>HYBRID-EXTERNAL-IDP</wayf:phphfeed><wayf:feds>eduGAIN</wayf:feds></wayf:wayf>
      <mdrpi:RegistrationInfo registrationAuthority="http://federation.belnet.be/" registrationInstant="2012-03-27T12:00:00Z">
        <mdrpi:RegistrationPolicy xml:lang="en">http://federation.belnet.be/files/Belnet-metadata-registration-practice-statement.txt</mdrpi:RegistrationPolicy>
      </mdrpi:RegistrationInfo>
      <mdattr:EntityAttributes>
        <saml:Attribute Name="http://macedir.org/entity-category-support" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
          <saml:AttributeValue>https://refeds.org/category/code-of-conduct/v2</saml:AttributeValue>
        </saml:Attribute>
      </mdattr:EntityAttributes>
    </md:Extensions>
    <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
      <md:Extensions>
        <mdui:UIInfo>
          <mdui:DisplayName xml:lang="en">Africamuseum IdP</mdui:DisplayName>
          <mdui:Description xml:lang="en">Royal museum for central Africa</mdui:Description>
          <mdui:Logo height="16" width="16">https://www.africamuseum.be/logos/africamuseum.png</mdui:Logo>
          <mdui:Logo height="75" width="150">https://www.africamuseum.be/logos/africamuseum.png</mdui:Logo>
          <mdui:PrivacyStatementURL xml:lang="en">https://www.africamuseum.be/en/legal/terms_conditions</mdui:PrivacyStatementURL>
        </mdui:UIInfo>
        <mdui:DiscoHints>
          <mdui:IPHint>193.190.223.0/24</mdui:IPHint>
          <mdui:DomainHint>africamuseum.be</mdui:DomainHint>
          <mdui:GeolocationHint>geo:50.831133,4.518289</mdui:GeolocationHint>
        </mdui:DiscoHints>
      </md:Extensions>
      <md:KeyDescriptor use="encryption">
        <ds:KeyInfo>
          <ds:X509Data>
            <ds:X509Certificate>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</ds:X509Certificate>
          </ds:X509Data>
        </ds:KeyInfo>
      </md:KeyDescriptor>
      <md:KeyDescriptor use="signing">
        <ds:KeyInfo>
          <ds:X509Data>
            <ds:X509Certificate>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</ds:X509Certificate>
          </ds:X509Data>
        </ds:KeyInfo>
      </md:KeyDescriptor>
      <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://adfs.africamuseum.be/adfs/ls/"/>
      <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://adfs.africamuseum.be/adfs/ls/"/>
      <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</md:NameIDFormat>
      <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat>
      <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
      <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://adfs.africamuseum.be/adfs/ls/"/>
      <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://adfs.africamuseum.be/adfs/ls/"/>
      <saml:Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="E-Mail Address"/>
      <saml:Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Given Name"/>
      <saml:Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Name"/>
      <saml:Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="UPN"/>
      <saml:Attribute Name="http://schemas.xmlsoap.org/claims/CommonName" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Common Name"/>
      <saml:Attribute Name="http://schemas.xmlsoap.org/claims/EmailAddress" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="AD FS 1.x E-Mail Address"/>
      <saml:Attribute Name="http://schemas.xmlsoap.org/claims/Group" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Group"/>
      <saml:Attribute Name="http://schemas.xmlsoap.org/claims/UPN" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="AD FS 1.x UPN"/>
      <saml:Attribute Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/role" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Role"/>
      <saml:Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Surname"/>
      <saml:Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/privatepersonalidentifier" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="PPID"/>
      <saml:Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Name ID"/>
      <saml:Attribute Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/authenticationinstant" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Authentication time stamp"/>
      <saml:Attribute Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/authenticationmethod" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Authentication method"/>
      <saml:Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/denyonlysid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Deny only group SID"/>
      <saml:Attribute Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/denyonlyprimarysid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Deny only primary SID"/>
      <saml:Attribute Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/denyonlyprimarygroupsid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Deny only primary group SID"/>
      <saml:Attribute Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/groupsid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Group SID"/>
      <saml:Attribute Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/primarygroupsid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Primary group SID"/>
      <saml:Attribute Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/primarysid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Primary SID"/>
      <saml:Attribute Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/windowsaccountname" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Windows account name"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/01/devicecontext/claims/isregistereduser" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Is Registered User"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/01/devicecontext/claims/identifier" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Device Identifier"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/01/devicecontext/claims/registrationid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Device Registration Identifier"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/01/devicecontext/claims/displayname" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Device Registration DisplayName"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/01/devicecontext/claims/ostype" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Device OS type"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/01/devicecontext/claims/osversion" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Device OS Version"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/01/devicecontext/claims/ismanaged" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Is Managed Device"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-forwarded-client-ip" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Forwarded Client IP"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-client-application" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Client Application"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-client-user-agent" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Client User Agent"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-client-ip" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Client IP"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-endpoint-absolute-path" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Endpoint Path"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/01/requestcontext/claims/x-ms-proxy" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Proxy"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/01/requestcontext/claims/relyingpartytrustid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Application Identifier"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/12/certificatecontext/extension/applicationpolicy" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Application policies"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/12/certificatecontext/extension/authoritykeyidentifier" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Authority Key Identifier"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/12/certificatecontext/extension/basicconstraints" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Basic Constraint"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/12/certificatecontext/extension/eku" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Enhanced Key Usage"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/12/certificatecontext/field/issuer" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Issuer"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/12/certificatecontext/field/issuername" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Issuer Name"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/12/certificatecontext/extension/keyusage" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Key Usage"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/12/certificatecontext/field/notafter" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Not After"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/12/certificatecontext/field/notbefore" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Not Before"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/12/certificatecontext/extension/certificatepolicy" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Certificate Policies"/>
      <saml:Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/rsa" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Public Key"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/12/certificatecontext/field/rawdata" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Certificate Raw Data"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/12/certificatecontext/extension/san" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Subject Alternative Name"/>
      <saml:Attribute Name="http://schemas.microsoft.com/ws/2008/06/identity/claims/serialnumber" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Serial Number"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/12/certificatecontext/field/signaturealgorithm" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Signature Algorithm"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/12/certificatecontext/field/subject" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Subject"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/12/certificatecontext/extension/subjectkeyidentifier" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Subject Key Identifier"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/12/certificatecontext/field/subjectname" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Subject Name"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/12/certificatecontext/extension/certificatetemplateinformation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="V2 Template Name"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/12/certificatecontext/extension/certificatetemplatename" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="V1 Template Name"/>
      <saml:Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/thumbprint" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Thumbprint"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/12/certificatecontext/field/x509version" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="X.509 Version"/>
      <saml:Attribute Name="http://schemas.microsoft.com/ws/2012/01/insidecorporatenetwork" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Inside Corporate Network"/>
      <saml:Attribute Name="http://schemas.microsoft.com/ws/2012/01/passwordexpirationtime" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Password Expiration Time"/>
      <saml:Attribute Name="http://schemas.microsoft.com/ws/2012/01/passwordexpirationdays" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Password Expiration Days"/>
      <saml:Attribute Name="http://schemas.microsoft.com/ws/2012/01/passwordchangeurl" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Update Password URL"/>
      <saml:Attribute Name="http://schemas.microsoft.com/claims/authnmethodsreferences" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Authentication Methods References"/>
      <saml:Attribute Name="http://schemas.microsoft.com/2012/01/requestcontext/claims/client-request-id" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="Client Request ID"/>
    </md:IDPSSODescriptor>
    <md:Organization>
      <md:OrganizationName xml:lang="en">Africamuseum</md:OrganizationName>
      <md:OrganizationDisplayName xml:lang="en">Africamuseum IdP</md:OrganizationDisplayName>
      <md:OrganizationURL xml:lang="en">http://www.africamuseum.be/</md:OrganizationURL>
    </md:Organization>
    <md:ContactPerson contactType="technical">
      <md:GivenName>ICT</md:GivenName>
      <md:SurName>Africamuseum</md:SurName>
      <md:EmailAddress>mailto:helpdesk@africamuseum.be</md:EmailAddress>
      <md:TelephoneNumber>+32-2-7695733</md:TelephoneNumber>
    </md:ContactPerson>
  </md:EntityDescriptor>

Number of schema errors: 0

Number of errors in metadata: 1

http://adfs.africamuseum.be/adfs/services/trust: noes md:Extensions/mdui:DiscoHints[not(parent::md:IDPSSODescriptor)]

Summary

keywords

a38dfed7ca http://adfs.africamuseum.be/adfs/services/trust CoCo2 federation.belnet.be/ Africamuseum IdP

entityid

http://adfs.africamuseum.be/adfs/services/trust

validUntil

2026-03-12T09:45:01Z

cacheDuration

PT6H

registrationInstant

2012-03-27T12:00:00Z

organisationdisplayname

Africamuseum IdP

idpname

Africamuseum IdP

servicename

servicename2

wayf_access_accept

assertion.encryption

exportaskrib

signingmethod

edugain

modified

spapproved

phphfeed

HYBRID-EXTERNAL-IDP

cat

signresponse

env

map2IdP

map2SP

attributenameformat

standalone

wayfscope

entid

a38dfed7ca

regauth

federation.belnet.be/

scope

[ ]

consent.disable

[ ]

federation

eduGAIN

feds

eduGAIN

entitycategories

0	https://refeds.org/category/code-of-conduct/v2

[ ]

nameidformat

0	urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress
1	urn:oasis:names:tc:SAML:2.0:nameid-format:persistent
2	urn:oasis:names:tc:SAML:2.0:nameid-format:transient

org

[ ]

arp

[ ]

keywordnames

0	Africamuseum IdP

contactmails

0	mailto:helpdesk@africamuseum.be

valuefilter

[ ]

valuefilterlegacy

[ ]

idplist

[ ]

SimpleSign

false

IDP

true

false

SAML2

false

SLO

true

sirtfi

false

sirtfi2

false

spdisplay

idpdisplay

Africamuseum IdP

certnotafter

0	2026-12-19T14:01:37+00:00
1	2026-12-19T14:01:37+00:00

keyname

0	8276335e531b51b49578d62673b793d2aa4d4601
1	8276335e531b51b49578d62673b793d2aa4d4601

keytype

0	RSA
1	RSA

keysize

0	2048
1	2048

fed

HYBRID-METADATA

feedurl

type

published

mtime

2026-03-05T09:45:53Z

entcat

CoCo2

collisions

[ ]

schemaerrors

metadataerrors