BNL Home

Login: Frequently Asked Questions

Why are you asking for my Google, Facebook, home institution, or other credentials?

Many of our potential guests and collaborators are unable to obtain an official BNL user account. At the same time, there are various situations where these individuals may need to access non-sensitive BNL information and processes. Recognizing that these users already have to maintain numerous username/password combinations to interact with various institutions and websites, we've begun accepting externally-issued credentials, wherever prudent, to decrease the burden of maintaining “yet another” username and password. For less-frequent users of BNL's services, this also reduces the problems associated with forgotten passwords.

If I log in using my social networking or home institution credentials, will that give BNL access to my password?

No. BNL will not ask for your username and password. Instead, you will be directed to a login page hosted by your selected “credential service provider” (e.g. your home institution, or social networking site). Upon successful authentication, your credential service provider will provide your system with a “token” (e.g. a cookie) that your web browser will present to the BNL application or resource you wish to access. BNL never has possession of your password, nor is it even passed over BNL's network.

If I log in using my social networking or home institution credentials, will that give BNL access to my personal information, and if so, how is it used?

Different institutions and social networking sites collect different information, and they determine which information they will make available to entities that make use of their credential services. At BNL, we only request the information necessary to determine who you are, and how to contact you if necessary. This is limited to a unique ID provided by the credential service provider, first name, last name, and e-mail address. We use this information to uniquely identify you within any BNL application you access, and if necessary, to contact you regarding those applications. BNL will not share your information with anyone.

How will BNL keep my information safe?

While being transmitted over the Internet, any information provided by your institution or social networking site is encrypted using SSL. BNL will not accept credentials from any credential service provider that fails to provide adequate encryption. Any processing or storage of your information by BNL will take place on secure servers, administered by trusted BNL personnel.

How can I get BNL to accept the username and password already issued to me by my home institution?

In order for BNL to accept your home institution's credentials, the institution must be a member of the InCommon Federation. Check this list to see if your home institution is already a member.  If not, then you will likely need to engage your institution's IT organization to begin the process.