Previous Topic: Create a JDBC Connection to the OTK/OIDC Database (PostgreSQL)Next Topic: Update the Authorize Endpoint

Single Sign-On ServiceSSO Getting Started GuideSSO Using CloudMinder as an OAuth Authorization ServerInstall OpenID Connect

Install OpenID Connect

Installing OpenID Connect allows the Layer 7 Gateway to act as an Open ID User Information Endpoint. During an authentication request, a client can request additional user profile information. As a User Information Endpoint, the Layer 7 Gateway can fulfill that request.

Note: Perform this procedure for each tenant for which you configure CA CloudMinder as an external IdP using OAuth. You only need to do this once per tenant, not once per OAuth client for that tenant.

Follow these steps:

  1. In the lower-left pane of the Policy Server interface, select the folder where you want to install policies.

    We recommend that you install in the root folder. Select the root node that is labeled with the hostname of the Gateway.

  2. Select Manage, then Additional Actions, then Install OpenID Connect.
  3. For Prefix, enter the protected alias you specified when you created this tenant. The prefix identifies the particular tenant in the CloudMinder environment for which you are configuring OAuth authentication.

    To locate the protected alias for the tenant, log in to the Management Console, click Environments, then click to view the environment for the current tenant. The protected alias for the tenant is listed.

    Note: In a single-tenant Cloudminder deployment, such as a test or development environment, you can leave the Prefix field blank.

  4. Select Core Services and Test Client.
  5. Under Map Policy JDBC Connection, select the JDBC connection you created previously.
  6. Click Install.

    When install is complete, the system creates a subfolder under root entitled "MAG-2.0" and the tenant prefix you entered.