The oidc-auth stanza entry is located in the [oidc]
stanza of the WebSEAL configuration file. It enables and disables the OIDC authentication
method.
About this task
OIDC authentication is disabled by default. To configure OIDC authentication, complete the
following steps:
Procedure
-
Stop the WebSEAL server.
-
Edit the WebSEAL configuration file. In the [oidc] stanza, specify the protocol to support in
your network environment. The protocols are shown in the following table.
Table 1. Configuring OIDC authentication
| Protocol to support |
Configuration file entry |
| HTTPS |
oidc-auth = https |
| Disable OIDC authentication (default) |
oidc-auth = none |
Note: OIDC authentication is not supported over the HTTP protocol.
-
Customize the entries contained within the
[oidc:<op-id>] stanza, where
'<op-id>' is a unique identifier for the OP.
-
Set the default OP ID by modifying the
default-op entry in the
[oidc] stanza.
-
Restart the WebSEAL server.