Redirect URI in client configuration should be https://<Access Point Domain Name>/wa/auth/oauth2/Redirect URI in client configuration should be https://<Access Point Domain Name>/wa/auth/oauth2/
|
Label |
Mandatory |
Description |
|
Enable authentication method |
|
When selected, OpenID Connect authentication is enabled. Selected by default. |
|
Visible in authentication menu |
|
When selected, OpenID Connect authentication will be displayed and selectable in the authentication menu. |
|
Display Name |
Yes |
Unique name used in the system to identify the authentication method. This name is also used as display name when users are prompted to select authentication method when logging in to the Portal. |
|
Authentication Method Type |
Static |
|
|
Authentication Method ID |
Static |
|
|
Client ID |
Yes |
OpenID (OAuth 2.0) Client Identifier valid at the Authorization Server. |
|
Client Secret |
Yes |
Client secret for the client ID at the authorization server. |
|
Discovery Endpoint |
No |
Endpoint URI that providers configuration of the OpenID Connect configuration. You may specify this or fields below. Dont forget to import proper CA certificates so that Digital Access can communicate via https. |
|
Issuer |
No |
Issuer ID that will provide authentication. Necessary if discovery endpoint is not specified. |
|
Authorization Endpoint |
No |
Authorization URI that will be used to initiate authentication code based authorization. Necessary if discovery endpoint is not specified. |
|
Token Endpoint |
No |
Token URI that will be used to get access token during authentication code based authorization. Necessary if discovery endpoint is not specified. |
|
Vertification Key |
No |
JWK (Json Web Key) public key that will used to validate the ID token received as part of authentication. Necessary if discovery endpoint is not specified. |