Previous Topic: Update the Authorize EndpointNext Topic: Update the Tenant Web Services Fragment

Single Sign-On ServiceSSO Getting Started GuideSSO Using CloudMinder as an OAuth Authorization ServerUpdate the UserInfo Endpoint

Update the UserInfo Endpoint

Note: Perform this procedure for each tenant for which you configure CA CloudMinder as an external IdP using OAuth. You only need to do this once per tenant, not once per OAuth client for that tenant.

Follow these steps:

  1. In the lower-left pane of the Policy Server interface, enter the following into the Search field: 
    userinfo
  2. If more than one search result is returned, select the one that ends with <PREFIX>/openid/connect/v1/userinfo in brackets. For example:

    Protected endpoints/MSSO related/UserInfo [<PREFIX>/openid/connect/v1/userinfo]

  3. Double-click to open the policy assertions for this endpoint.

    The list of assertions for this endpoint appear.

  4. In the policy assertion pane, enter the following into the Search field: 
    CHANGEME

    The system highlights the appropriate assertion.

  5. Right-click the assertion, and select Enable Assertion from the menu.
  6. Double-click to open the assertion.
  7. Set LDAP Connector to the identity provider you created previously.

    You created the identity provider in the Create an Identity Provider for CA Directory topic.

  8. Click OK.
  9. Click Save and Activate.