Setup an external OIDC Identity Provider
Setting up an external OIDC login with any third-party identity provider requires establishing a trusted relationship between Strivacity and the third-party identity provider.
Configuring Strivacity with an External OIDC Identity Provider (IdP)
Following these steps will enable you to set up an external OIDC identity provider (and your application).
-
Start by logging into the Admin Console using an admin account.
-
From the left-hand menu, select Identities > Enterprise login.
-
From the Enterprise Login screen, click the + Create Enterprise Login Provider button from the top right-hand corner.
-
From the Create Enterprise Login Provider screen click the OIDC icon as shown below:
Options for creating an external enterprise login provider
- The Create OIDC Login Provider screen will now be displayed:
The table below provides guidance on how to complete and use these fields on the General tab:
| Field Name | Description |
|---|---|
| Name | Define a name for this Enterprise OIDC Login Provider. This name is used to refer to this provider throughout the Admin Console. |
| Description | Define a description to help other Strivacity admins understand what this provider is used for. |
| Client ID | The Client ID is generated by the Enterprise Identity Provider and entered here. |
| Client Secret | The Client Secret is generated by the Enterprise Identity Provider and entered here. |
| Login Button Text | This is the text that is displayed on the login button on the log-in screen. If no custom text is displayed here then the name will be used. |
| Auto Discovery | Enter any OIDC auto-discovery URL to enable Strivacity to automatically configure this login provider from the Enterprise Identity Provider. |
| Authorization Endpoint | The Authorization Endpoint will be displayed here based on auto-configuration. |
| Token Endpoint | The Token Endpoint will be displayed here based on auto-configuration. |
| Issuer | Any Issuer Information will be displayed here based on auto-configuration. |
| Userinfo Endpoint | The Userinfo Endpoint will be displayed here based on auto-configuration. |
| Scopes: OpenID | The default OpenID Connect scopes can be enabled or disabled. |
| Scopes: Extra | Any additional scopes can be added here. |
| Customer Data Handling | If you choose to synchronize and store any profile data at each login, then will retrieve and store this information which will be visible to the customer on the My Account page and to any admins when managing the customer identity. |
-
Once completed, click the Save button. You will now be able to view the Claim Mappings tab, and edit and add any additional claims for this OIDC integration.
-
Once you've made any changes to Claim Mappings, you're ready to copy the ClientID and Client Secret from your third-party application and paste the respective values into the ClientID and Client Secret fields. Click Save.
Strivacity will use the User (Read) attributes of the customer's profile. If you choose to synchronize and store any account profile data at each login, then Strivacity will retrieve and store this information which will be visible to the customer on the My Account page, and to any Admin's when managing the customer identity.
Updated 7 months ago