<?xml version="1.0" encoding="UTF-8"?>
<EntityDescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" entityID="https://saml.sys.kth.se/idp/shibboleth">
  <Extensions>
    <mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute">
      <samla:Attribute xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category">
        <samla:AttributeValue>http://refeds.org/category/hide-from-discovery</samla:AttributeValue>
      </samla:Attribute>
    </mdattr:EntityAttributes>
  </Extensions>
  <IDPSSODescriptor protocolSupportEnumeration="urn:mace:shibboleth:1.0 urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
    <Extensions>
      <shibmd:Scope regexp="false">kth.se</shibmd:Scope>
      <mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui">
        <mdui:DisplayName xml:lang="sv">Kungliga Tekniska högskolan (KTH)</mdui:DisplayName>
        <mdui:DisplayName xml:lang="en">KTH Royal Institute of Technology</mdui:DisplayName>
        <mdui:Description xml:lang="sv">Identity Provider för KTH</mdui:Description>
        <mdui:Description xml:lang="en">Identity Provider for KTH</mdui:Description>
        <mdui:InformationURL xml:lang="sv">https://www.kth.se/</mdui:InformationURL>
        <mdui:InformationURL xml:lang="en">https://www.kth.se/en</mdui:InformationURL>
        <mdui:Logo height="166" width="166">https://saml.sys.kth.se/idp/images/logo.png</mdui:Logo>
        <mdui:Keywords xml:lang="sv">stockholm</mdui:Keywords>
        <mdui:Keywords xml:lang="en">stockholm</mdui:Keywords>
      </mdui:UIInfo>
      <mdui:DiscoHints xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui">
        <mdui:DomainHint>kth.se</mdui:DomainHint>
        <mdui:IPHint>130.237.0.0/18</mdui:IPHint>
        <mdui:IPHint>130.237.64.0/20</mdui:IPHint>
        <mdui:IPHint>130.237.80.0/22</mdui:IPHint>
        <mdui:IPHint>130.237.84.0/24</mdui:IPHint>
        <mdui:IPHint>130.237.202.0/23</mdui:IPHint>
        <mdui:IPHint>130.237.206.0/24</mdui:IPHint>
        <mdui:IPHint>130.237.209.0/24</mdui:IPHint>
        <mdui:IPHint>130.237.210.0/23</mdui:IPHint>
        <mdui:IPHint>130.237.212.0/22</mdui:IPHint>
        <mdui:IPHint>130.237.216.0/24</mdui:IPHint>
        <mdui:IPHint>130.237.218.0/23</mdui:IPHint>
        <mdui:IPHint>130.237.220.0/22</mdui:IPHint>
        <mdui:IPHint>130.237.224.0/22</mdui:IPHint>
        <mdui:IPHint>130.237.228.0/22</mdui:IPHint>
        <mdui:IPHint>130.237.232.0/21</mdui:IPHint>
        <mdui:IPHint>130.237.249.0/24</mdui:IPHint>
        <mdui:IPHint>130.237.250.0/23</mdui:IPHint>
        <mdui:IPHint>130.237.255.0/24</mdui:IPHint>
        <mdui:IPHint>130.229.128.0/18</mdui:IPHint>
        <mdui:IPHint>193.10.37.0/24</mdui:IPHint>
        <mdui:IPHint>193.10.38.0/24</mdui:IPHint>
        <mdui:IPHint>193.10.39.0/24</mdui:IPHint>
        <mdui:IPHint>2001:6b0:1::/48</mdui:IPHint>
        <mdui:GeolocationHint>geo:59.346123,18.072305</mdui:GeolocationHint>
      </mdui:DiscoHints>
    </Extensions>
    <KeyDescriptor>
      <ds:KeyInfo>
        <ds:X509Data>
          <ds:X509Certificate>MIIDMDCCAhigAwIBAgIVAOHnWp4SJR1ucFuzdVgffOjOdhbCMA0GCSqGSIb3DQEB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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </KeyDescriptor>
    <ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://saml-2.sys.kth.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/>
    <ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://saml-2.sys.kth.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/>
    <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://saml-2.sys.kth.se/idp/profile/SAML2/Redirect/SLO"/>
    <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://saml-2.sys.kth.se/idp/profile/SAML2/POST/SLO"/>
    <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://saml-2.sys.kth.se:8443/idp/profile/SAML2/SOAP/SLO"/>
    <NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
    <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
    <SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://saml-2.sys.kth.se/idp/profile/Shibboleth/SSO"/>
    <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://saml-2.sys.kth.se/idp/profile/SAML2/POST/SSO"/>
    <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://saml-2.sys.kth.se/idp/profile/SAML2/POST-SimpleSign/SSO"/>
    <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://saml-2.sys.kth.se/idp/profile/SAML2/Redirect/SSO"/>
  </IDPSSODescriptor>
  <AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
    <Extensions>
      <shibmd:Scope regexp="false">kth.se</shibmd:Scope>
    </Extensions>
    <KeyDescriptor>
      <ds:KeyInfo>
        <ds:X509Data>
          <ds:X509Certificate>MIIDMDCCAhigAwIBAgIVAOHnWp4SJR1ucFuzdVgffOjOdhbCMA0GCSqGSIb3DQEB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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </KeyDescriptor>
    <AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://saml-2.sys.kth.se:8443/idp/profile/SAML1/SOAP/AttributeQuery"/>
    <AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://saml-2.sys.kth.se:8443/idp/profile/SAML2/SOAP/AttributeQuery"/>
    <NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
    <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
  </AttributeAuthorityDescriptor>
  <Organization>
    <OrganizationName xml:lang="en">KTH</OrganizationName>
    <OrganizationDisplayName xml:lang="sv">Kungliga Tekniska högskolan (KTH)</OrganizationDisplayName>
    <OrganizationDisplayName xml:lang="en">KTH Royal Institute of Technology</OrganizationDisplayName>
    <OrganizationURL xml:lang="en">http://www.kth.se</OrganizationURL>
  </Organization>
  <ContactPerson contactType="administrative">
    <Company>KTH Royal Institute of Technology</Company>
    <SurName>UF/ITA Infra (Alexander Boström, Hans Berggren, Jonas Andersson)</SurName>
    <EmailAddress>ita-infra-saml-contact@kth.se</EmailAddress>
    <TelephoneNumber>+46 8 790 6000</TelephoneNumber>
  </ContactPerson>
  <ContactPerson contactType="technical">
    <Company>KTH Royal Institute of Technology</Company>
    <SurName>UF/ITA Infra (Alexander Boström, Hans Berggren, Jonas Andersson)</SurName>
    <EmailAddress>ita-infra-saml-contact@kth.se</EmailAddress>
    <TelephoneNumber>+46 8 790 6000</TelephoneNumber>
  </ContactPerson>
  <ContactPerson contactType="support">
    <Company>KTH Royal Institute of Technology</Company>
    <SurName>KTH IT-Support</SurName>
    <EmailAddress>it-support@kth.se</EmailAddress>
    <TelephoneNumber>+46 8 790 6600</TelephoneNumber>
  </ContactPerson>
</EntityDescriptor>