Here below are links to step-by-step instructions for different cases
Developers must have in mind:
Ensure that users cannot obtain or get wrong sessions for other users.
Validate signatures and certificates.
Not to create unnecessary load on the system.
Services that are not following these guidelines can be disabled by Auðkenni.