Modify the list of OpenID providers
We can change the list of identity providers that your users can access. We can add or remove providers from the list. We can change the order that the identity providers display in the Login and Profile Management portlet user interfaces.To modify the list of OpenID providers:
- Log on to the WAS admin console.
- Go to Security > Global security > Web and SIP security > Trust association.
- Select Interceptors and then select com.ibm.portal.auth.OpenIDTAI.
- Modify the following properties based on the business requirements:
- openid.servicenames
- Define a comma-separated list of the identity providers that the users see.
For example, type Google,Yahoo,myOpenID. The order of the names affects the user interface and the order that the providers are displayed.
- provider.openid.servicenames.endpoints
- When configuring identity providers that use the OpenID specifications, enter a comma-separated list of OpenID endpoints (access addresses) for the identity providers that you entered in the openid.servicenames parameter.
For example, type https://www.google.com/accounts/o8/id,https://me.yahoo.com/,http://myopenid.com/. There must be a one-to-one correspondence between the openid.servicenames and the openid.servicenames.endpoints parameters. If you entered three identity providers in the openid.servicenames parameter, you must enter three endpoints in the openid.servicenames.endpoints parameter and in the same sequence.
- Restart the WebSphere_Portal server.