eIAM list of IdPs


eIAM mediates authentication services from various internal and external identity providers (IdPs) to applications of the federal administration. These identity providers are divided into three groups.

IdP group "FED-LOGIN"

IdPs from this group cannot be ordered individually*.

The term FED-LOGIN covers all login methods that enable the use of the SG-PKI-based electronic identity (eID). An SG-PKI-based eID is issued to users who have been onboarded by the Federal Administration's personnel services or by certain partners of the Federal Administration, such as cantonal administrations, via their employer processes.

More information about the FED-LOGIN methods


*Although not individually orderable, it is possible to influence the IdPs offered to the end user. For example, it is still possible to force effective smartcard use as a credential (PIN request) by requiring the target application to have the authentication strength verystrong or by having the authentication strength verystrong fixed in eIAM for this target application.

Group "BYOI bundle"

"BYOI" stands for "Bring Your Own Identity". IdPs from this group cannot be ordered individually.

Identities from the group "BYOI-Bundle" can initially always be used in the eGov context and via the step-up nHEC+ () also in the enterprise context, in any case there is always only one eIAM root account per electronic identity, the enterprise context capability is a property (attribute) of the corresponding eIAM
account. If an identity from the "BYOI bundle" group calls up an application that requires the enterprise context, a CIS entry is created - via the video verification process- and the enterprise capability attribute is set in the eIAM root account. IdPs in the group "BYOI bundle" are cantonal IdPs for citizens and representatives of the economy and Swiss IdPs with high relevance for the federal administration such as the edu-ID from Switch. The connectivity of other private Swiss IdPs and IdPs in general is regulated by the FCh DTI.

Further information BYOI-Bundle
×

IdP AGOV
Authentication service of the Swiss authorities - AGOV. AGOV is the new CH-LOGIN, i.e. identity network (IdN) and identity provider (IdP) of the Federal Administration's identity and access management standard service. AGOV will be available for productive use from January 2024 and will replace CH-LOGIN in due course.

IdP CH-LOGIN
CH-LOGIN is a 2-factor (username/password and Passkey FIDO/Mobile ID/mTAN/AuthApp) identity provider service provided by eIAM services. Users can register themselves.

IdP #edaLogin
Portal of the Federal Department of Foreign Affairs (FDFA)

IdP-BE - eID
The IdP-BE is provided by the canton of Bern itself. All users who have an eID from the canton of Bern can log in via this IdP.

IdP-GE - eID
Used to authenticate employees of the Cantonal Administration of Geneva for online services.

IdP-SH - eID+ Schaffhausen
Thanks to the Schaffhausen eID+, cantonal residents can set up an electronic identity on their smartphone and have the data recorded in it officially confirmed by the residents' registration office. The identity created in this way then enables secure and simple access to various electronic government services without additional logins and passwords.

IdP-ZG - eID
The IdP-ZG eID is provided by the canton of Zug itself. All users who have an eID from the canton of Zug can identify themselves online in order to conduct their administrative business with the canton, the communes and the administrative court electronically.

IdP-ZG - eZug
The IdP-ZG eZug - "Smart Government" is provided by the canton of Zug itself. Users with an eZug ID can identify themselves online and conveniently and quickly request, manage and pay for documents, as well as sign digitally and use various resident services. All of this is very practical via a mobile device (smartphone, iPhone, etc.).

IdP-eduID
SWITCH edu-ID is the digital identity that SWITCH has developed within the framework of the "Swiss edu-ID" project for permanent use by university staff and students.

Group "Sector IdPs"

"Sector eIDs" stand for electronic identities for dedicated use in specific sectors. For example, the PTI Switzerland identities of the police corps, within the federal administration, are only used in specific specialist applications of the police sector. IdPs from this group are ordered individually for specific target applications and are not pre-federated via the CH-LOGIN.

These IdP belong to specific application context and therefore are not bound to eGov nor enterprise context. Because of this, identities of those IdP are not available in CIS. Examples of sector eIDs are the HPI identities and electronic identities from the health sector in EPR and non-EPR quality (EPR quality = certified according to EPDG). Any cost settlements made by the IdP providers in this group are not included in the eIAM tariff and are charged in full to the holder of the consuming target systems.

The use of sector IDs must be requested from the FCh DTI via process P035 ().

Further information sector-eIDs
×

Sector IdPs

  • PTI-LOGIN
    The Swiss police corps are equipped with a PTI-LOGIN as part of their local organisation. The PTI-LOGIN can be used to access selected applications of the federal administration. Support for the PTI-LOGIN is provided by the local organisation of the police corps.
  • HIN-Classic LOGIN / myFMH-LOGIN
    HIN-Classic LOGIN and myFMH-LOGIN are both managed via an HIN login page and, in conjunction with the associated authentication means, enable location-independent login to federal administration web applications from the Internet. There are special applications that can be accessed exclusively with these two login methods, either in their entirety or for certain groups of people. Please note that there are two versions of the FMH-LOGIN. You must log in with the details (user name and password) on the data sheet issued by HIN and NOT with the number on your FMH doctor's card! For further information on HIN-Classic LOGIN and myFMH-LOGIN, please contact Health Info Net AG (HIN) www.hin.ch
  • HIN-EPR LOGIN
    Is the same as HIN-Classic LOGIN but approved for EPD ( electronic patient dossier) processing due to stronger authentication means. If you need to upgrade your HIN-LOGIN to HIN EPR and for all other questions regarding HIN-LOGINs, please contact Health Info Net AG (HIN) www.hin.ch
  • HP-ID HealthID MyTrustID classic LOGIN
    These electronic identities are available from www.trustID.ch, they can be used for certain applications of the federal administration.
    For HealthID MyTrustID there is the quality level EPR certified for the electronic patient dossier. All lower HealthID MyTrustID qualities are listed separately as "classic" in the present system.
  • HealthID MyTrustID EPR LOGIN
    The HealthID MyTrustID EPR LOGIN uses the quality of the HealthID MyTrustID identities certified for the electronic patient dossier. Selected target applications of the federal administration require this quality level; affected users are informed about this in advance. HealthID MyTrustID identities that do not achieve the EPR quality level are grouped under HealthID MyTrustID-Classic. Personal HealthID MyTrustID-Classic identities can be upgraded to HealthID MyTrustID EPR via www.trustID.ch.
  • TrustID (Classic and EPR)
    The Federal Electronic Patient Dossier Act (EPDG) requires health professionals to have electronic identities - so-called eIDs - to access data in the electronic patient dossier (EPD). The company ELCA Informatik AG offers the possibility of providing health professionals and assistants with such identities via the trustID.
  • Login for employees of the Canton of Bern
    This sector IdP provides identities of employees of the Canton of Bern.
  • V-LOGIN
    Identity provider of the FUB command support base for login to DDPS applications.

Other IdP's

  • Military IdPs: As long as eIAM does not federate the ICAM IdP, applications that have members of the armed forces as user groups should generally be integrated into ICAM in the sense of unbundling.