AARC Blueprint Architecture

The AARC Blueprint Architecture (BPA) is a set of software building blocks that can be used to implement federated access management solutions for international research collaborations.

The Blueprint Architecture lets software architects and technical decision makers mix and match tried and tested components to build customised solutions for their requirements.

The final version consists of five component layers grouped by functional roles:

  • User Identity: services which provide electronic identities that can be used by users participating in international research collaborations.
  • Community Attribute Services: components related to managing and providing information (attributes) about users, such as community group memberships and roles, on top of the information that might be provided directly by the identity providers from the User Identity Layer.
  • Access Protocol Translation: defines an administrative, policy and technical boundary between the internal/external services and resources.
  • Authorisation: contains elements to control the many ways users can access services and resources.
  • End-services: where the external services interact with the other elements of the AAI.


AARC has guidelines and best practice recommendations to support the implementation of the Blueprint Architecture.


AARC in Action

Case studies showing how the Blueprint Architecture is helping research communities to find AAI solutions.

Start with AARC – Blueprint Architecture video

Get in touch!

We welcome your feedback – send your comments, questions or suggestions about the blueprint architecture at aarc-connect@lists.geant.org