OpenID Connect

OpenID Connect (OIDC) is ubiquitous these days and must be supported in the IAM system you want to use. Note that OpenID Connect is not the same as OpenID 1.0 or OpenID 2.0. The IAM system must also support OpenID Connect Discovery 1.0 which gives you a URL which lets a client discover all the OIDC related services, including where to request an access token and where to refresh it.

Granted that the IAM system supports these two standards, CUE User Manager should be able to use it by entering the service discovery URI in /etc/escenic/user-manager/user-manager.yaml: 

provider:
  oidcEndpoint: https://iam.mycompany.com/oidc-discovery

Copyright © 2019 CCI Europe AS