Metadata registration practice statement	
Federation Name: IDEM
Federation Operator: GARR, Italy
Federation Web Page: https://www.idem.garr.it/index.php/en/idem-aai

Date of last change: 20110726

Common Practices
----------------
An Organization asking for to join IDEM with an IDP or an SP has  to fill and sign an appropriate request for Membership or for Partnership.
Membership is for GARR members (Italian R&E Organizations), Partnership is for other Organizations.
Membership or Partnership request must be signed by official representative(s) of the participating institution.
The Membership or Partnership request is checked by the federation operator and must be approved by the Policy Committee.

Practices on Identity Provider Registration
-------------------------------------------
An Organization asking to register an IDP has to fill a form and send appropriate metadata for the entity.
The form and Metadata received from the Organization are checked by the federation operator to verify the requirements and must be approved by the Policy Committee.
Necessary requirements:
- a document describing the vetting process for end users before their registation in the IDP;
- the privacy policy on attributes release;
- the IDP must be correctly configured, secured and running;

After the approval, the federation operator publishes and maintains the Metadata.
Subsequent changes to these elements and attributes do not require
re-approval by the federation operator. Only administrators specifically appointed
by the Organization can modify the IdP
information.
For interfederation, the entity must provide SAML2 Metadata and ask the federation operator to publish it for participation in eduGAIN.

Practices on Registration of a Service Provider
------------------------------------------
Organization asking to register an SP has to fill a form and send appropriate metadata for the entity.
The form and Metadata received from the Organization are checked by the federation operator to verify the requirements and must be approved by the Policy Committee.
Requirements:
- declaration to fulfill EC Data Protection Directive;
- the SP must be correctly configured, secured and running;

After approval, the federation operator publishes and maintains the Metadata.
Subsequent changes to these elements and attributes do not require
re-approval by the federation operator. Only administrators specifically appointed by the Organization can modify the SP specific information.
For interfederation, the entity must provide SAML2 Metadata and ask the federation operator to publish it for participation in eduGAIN.

Practices regarding Metadata modifications
------------------------------------------
In IDEM, Metadata is modified only by a manual intervention of the federation operator. When an entity needs a change, its administrator sends the new Metadata to the federation operator, who makes the appropriate checks before including/substituting the new snippet in the official federation Metadata file.

The IdP/SP administrator also has to insert into the Metadata non-technical information like descriptions or support contacts.