Configuring OIDC Authentication

Introduction

This section uses the OneAccess user portal as an example to describe how to configure the OIDC authentication. After configuring the OpenID Connect authentication source, you can refer to this section to log in to each application system.

Prerequisites

• You have permissions to access the administrator portal.
• You have configured the OIDC authentication provider in OneAccess. For details, see Configuring an OIDC Authentication Provider.

Enabling OIDC Authentication

1. Log in to the administrator portal.
2. On the top navigation bar, choose Resources > Applications.
3. Click User Portal on the page.
4. On the application information page, click the application icon.
5. Choose Login Settings > Website Applications, click OIDC to enable OIDC authentication, and select the authentication provider added in Adding an OIDC Authentication Provider.

Logging In to the User Portal Through OIDC Authentication

1. Go to the user portal login page, select OIDC, enter the username and password of the user authorized in 3, and click Log In.
   Figure 1 OIDC Authentication
   

2. After login, go to the administrator portal, choose Users > Organizations and Users, and view the automatically created user.
   

   • To automatically create a user if the authorized user is not associated with any system user, set No User Associated to Automatically create users. For details, see Table 1.
   • If the user attribute Email is unique, users automatically created in the preceding scenario belong to the first root organization in OneAccess by default.