Aeries SIS supports the OneRoster® 1.1 specification. OneRoster is a standard for securely exchanging data between student information systems (SIS) and other applications such as Learning Management Systems (LMS). More information is available on the IMS Global website: https://www.1edtech.org/standards/oneroster
Note - The Aeries implementation of the OneRoster API does not support grade pass-back for Elementary Schools without a Master Schedule.
Aeries Public Demo
The public Aeries Demo site is configured with a set of credentials that a vendor can use to test the OneRoster 1.1 API. Please refer to the article on OneRoster API Authentication Process for details.
Aeries Base URL: https://demo.aeries.net/aeries/
Client ID: 1279e5c6b747b6d62b7c76db3a205d40eb7458e678a90493d537d5af6b953550
Client Secret: 68019dbf8d8ba82980dd148eecc3977ac0d7f1f040d444225874c88eb80b9c1a
API Security
Access for Vendors is configured on the Security > API Security page. Instructions can be found in the API Security article.
Enable the OneRoster API
At the District level, navigate to the School Info > School Options page. Click the Edit or Change button to enter Edit mode. Scroll to the OneRoster Settings section. Check Enable.
The following warning message will display. Click OK to continue.
Note: As the warning message indicates, these settings will not take effect until the Aeries application is restarted in IIS. This can be accomplished by recycling the Application Pool under which Aeries is running or by resetting IIS. This will terminate all active user sessions, which may result in lost work and therefore is recommended to be done outside regular hours.
Click OK to continue. The following options will display.
| OneRoster URL | This is the base URL for your Aeries Web application. The website needs to be publicly accessible from outside your local network, it MUST be secured with a digital certificate (HTTPS), it MUST include a sub directory (https://MyDistrict.aeries.net/aeries/), and the server MUST support TLS 1.2. If you are uncertain of the base URL, simply browse to your Aeries login page, then copy everything before the last slash (“/”) in the browser’s address bar. |
| Signing Certificate | Click the Search icon to display a list of available certificates stored on your web server. The Signing Certificate should be set to the valid root CA (Certificate Authority) for your installed SSL certificate. |
Make sure to match the case of the Aeries URL exactly, as certain configurations may require this (e.g. https://aeries.mydistrict.org/aeries vs https://Aeries.MyDistrict.org/Aeries). Also, the Public URL must be a Virtual Directory. Aeries Hosted customers should contact Aeries Support to have this step verified if this is the first OneRoster connection created by the district to ensure that the correct certificate is selected and that the recycling of the Application Pool can be coordinated.
Using Postman or similar tool, verify the setup by making a token request to:
https://MyDistrict.aeries.com/aeries/token