Account Creation
An account is what a constituent logs in to in order to update their contact information, adjust their directory listing, or (optionally) certify their identity when purchasing a membership or registering for an event.
These constituent accounts are entirely separate from accounts used to administer AlumnIQ.
SSO (campus provided)
If your institution completely controls authentication for all constituents, then the login process will take the constituent to your institutional signin page before redirecting back to AlumnIQ for automatic provisioning of a matched account. We'll work with your IDM folks to determine which properties of the login response will serve to link that user with a warehouse record. In most cases this is an XID, but for a few we've had to request (and receive) a separate netid to link the two.
AlumnIQ supports Shibboleth (SAML2), OAuth, and OIDC for third party authentication.
Note that any users using SSO will not have to go through any public-facing account creation or provisioning process; this is a seamless experience for them.
"Local" (AlumnIQ-provisioned)
If your institution has opted to let AlumnIQ control authentication for all constituents, then the login process will take place entirely within AlumnIQ.
Creating an account
Accounts are (almost) exclusively created by constituents. There are three ways for them to do so:
Go to /signup and fill out the form, after which they'll receive an email with a magic link to set a password.
Register for an event and at the end check the box to have an account created automatically; they'll receive an email with a magic link to set a password after registration.
A magic link is sent from the AlumnIQ mail module, containing a different type of magic link to automatch the constituent to the profile.
An account can be created in matched or unmatched state. A matched account is one that has your institutional identifier (xid) attached, thus linking the account with warehouse data on the constituent. Only those with matched accounts can update their profiles and, if permitted, make use of the directory.
Hybrid Environments
Yes, we do support hybrid environments: current campus "residents" using SSO and all alumni/friends using AlumnIQ local auth is a not uncommon model.
Last updated