Enable and disable OIDC authentication
The oidc-auth stanza entry is located in the [oidc] stanza of the WebSEAL configuration file. It enables and disables the OIDC authentication method.
OIDC authentication is disabled by default. To configure OIDC authentication, complete the following steps:
Steps
- Stop the WebSEAL server.
- Edit the WebSEAL configuration file. In the [oidc] stanza, specify the protocol to support in the network environment. The protocols are shown in the following table.
Protocol to support Configuration file entry HTTPS oidc-auth = https Disable OIDC authentication (default) oidc-auth = none OIDC authentication is not supported over the HTTP protocol.
- Customize the entries contained within the [oidc:<op-id>] stanza, where '<op-id>' is a unique identifier for the OP.
- Set the default OP ID by modifying the default-op entry in the [oidc] stanza.
- Restart the WebSEAL server.
Parent topic: OpenID Connect (OIDC) authentication